Alternatives and similar repositories for hdroot-bootkit-analysis

Users that are interested in hdroot-bootkit-analysis are comparing it to the libraries listed below

• deroko / payloadrestrictions
  ☆36Updated 8 years ago
• vallejocc / PoC-Inject-Data-WM_COPYDATA
  A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext
  ☆53Updated 7 years ago
• RISCYBusiness / Jadoube
  ☆22Updated 8 years ago
• FSecureLABS / CVE-2016-7255
  An exploit for CVE-2016-7255 on Windows 7/8/8.1/10(pre-anniversary) 64 bit
  ☆82Updated 8 years ago
• MortenSchenk / Token-Stealing-Shellcode
  ☆54Updated 8 years ago
• Cn33liz / HSEVD-StackOverflowX64
  HackSys Extreme Vulnerable Driver - Windows 10 x64 StackOverflow Exploit with SMEP Bypass
  ☆67Updated 7 years ago
• Cn33liz / HSEVD-StackOverflow
  HackSys Extreme Vulnerable Driver - StackOverflow Exploit
  ☆32Updated 8 years ago
• rwfpl / rewolf-gogogadget
  kernel exploitation helper class
  ☆77Updated 9 years ago
• helpsystems / GDIObjDump
  ☆35Updated 10 years ago
• ThisIsSecurity / sinkhole
  Miscellanous scripts used for malware analysis
  ☆23Updated 7 years ago
• helpsystems / Agafi
  A gadget finder and a ROP-Chainer tool for x86 platforms
  ☆95Updated 4 years ago
• FSecureLABS / defcon25_uac_workshop
  UAC 0Day all day!
  ☆57Updated 8 years ago
• x64dbg / x64dbgpylib
  Port of windbglib to x64dbgpy, in an effort to support mona.py in x64dbg.
  ☆51Updated 6 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆39Updated 8 years ago
• SekoiaLab / BinaryInjectionMitigation
  Two tools used during our analysis of the Microsoft binary injection mitigation implemented in Edge TH2.
  ☆53Updated 8 years ago
• BorjaMerino / tlsInjector
  Python script to inject and run shellcodes through TLS callbacks
  ☆49Updated 10 years ago
• sam-b / CVE-2014-4113
  Trigger and exploit code for CVE-2014-4113
  ☆42Updated 9 years ago
• Cn33liz / HSEVD-ArbitraryOverwriteGDI
  HackSys Extreme Vulnerable Driver - ArbitraryOverwrite Exploit using GDI
  ☆42Updated 8 years ago
• nmulasmajic / CVE-2018-8897
  Implements the POP/MOV SS (CVE-2018-8897) vulnerability by bugchecking the machine (local DoS).
  ☆79Updated 7 years ago
• N3mes1s / ioctlbf
  Automatically exported from code.google.com/p/ioctlbf
  ☆17Updated 10 years ago
• abatchy17 / HEVD-Exploits
  Exploit code used for the HackSysExtremeVulnerableDriver.
  ☆43Updated 7 years ago
• Heurs / parseNTFS
  Simple NTFS crawler.
  ☆56Updated 8 years ago
• atlantis2013 / Evasion-Tools
  Anti-technique Codes, Detection of Anti-technique codes
  ☆38Updated 12 years ago
• BreakingMalwareResearch / Captain-Hook
  ☆52Updated 9 years ago
• Microwave89 / syscalltest
  PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls
  ☆39Updated 10 years ago
• hatRiot / bugs
  public bugs/proof of concepts
  ☆50Updated 4 years ago
• JeremyFetiveau / Exploits
  Old exploits and code for my self-referencing PML4 technique (2014)
  ☆32Updated 10 years ago
• sam-b / HackSysDriverExploits
  ☆50Updated 8 years ago
• sam-b / windows_syscalls_dumper
  A dirty IDAPython script to dump windows system call number/name pairs as JSON
  ☆37Updated 8 years ago
• Cn33liz / HSEVD-ArbitraryOverwrite
  HackSys Extreme Vulnerable Driver - ArbitraryOverwrite Exploit
  ☆26Updated 8 years ago