williamshowalter / hdroot-bootkit-analysisLinks
Supporting Files on my analysis of the malware designated hdroot.
☆59Updated 8 years ago
Alternatives and similar repositories for hdroot-bootkit-analysis
Users that are interested in hdroot-bootkit-analysis are comparing it to the libraries listed below
Sorting:
- ☆34Updated 7 years ago
- ☆34Updated 9 years ago
- A gadget finder and a ROP-Chainer tool for x86 platforms☆94Updated 3 years ago
- A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext☆50Updated 7 years ago
- HackSys Extreme Vulnerable Driver - Windows 10 x64 StackOverflow Exploit with SMEP Bypass☆62Updated 7 years ago
- Exploit code used for the HackSysExtremeVulnerableDriver.☆43Updated 6 years ago
- A dirty IDAPython script to dump windows system call number/name pairs as JSON☆37Updated 8 years ago
- ☆51Updated 8 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆38Updated 9 years ago
- HackSys Extreme Vulnerable Driver - StackOverflow with Stack Cookie Bypass Exploit☆18Updated 8 years ago
- ☆34Updated 7 years ago
- Automatically exported from code.google.com/p/ioctlbf☆16Updated 10 years ago
- Anti-technique Codes, Detection of Anti-technique codes☆38Updated 11 years ago
- ☆22Updated 7 years ago
- ☆39Updated 4 years ago
- Framework to automatically test and explore the capabilities of generic AV engines☆69Updated 6 years ago
- An exploit for CVE-2016-7255 on Windows 7/8/8.1/10(pre-anniversary) 64 bit☆81Updated 8 years ago
- HackSys Extreme Vulnerable Driver - StackOverflow Exploit☆31Updated 8 years ago
- Miscellanous scripts used for malware analysis☆22Updated 6 years ago
- Old exploits and code for my self-referencing PML4 technique (2014)☆32Updated 10 years ago
- Python script to inject and run shellcodes through TLS callbacks☆49Updated 9 years ago
- Port of windbglib to x64dbgpy, in an effort to support mona.py in x64dbg.☆51Updated 5 years ago
- Materials for the Evolutionary Kernel Fuzzing talk at Black Hat USA 2017☆69Updated 7 years ago
- ☆50Updated 8 years ago
- Flare-On solutions☆36Updated 5 years ago
- kernel exploitation helper class☆77Updated 8 years ago
- Analysis PE file or Shellcode☆49Updated 8 years ago
- Implements the POP/MOV SS (CVE-2018-8897) vulnerability by bugchecking the machine (local DoS).☆75Updated 7 years ago
- Binary Ninja plugin that syncs WinDbg to Binary Ninja☆47Updated 7 years ago
- Extract OLEv1 objects from RTF files by instrumenting Word☆51Updated 5 years ago