y11en / r0ak
r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
☆14Updated 6 years ago
Alternatives and similar repositories for r0ak:
Users that are interested in r0ak are comparing it to the libraries listed below
- 一些研究☆14Updated 5 years ago
- KernelBugTest☆15Updated 6 years ago
- IDA PRO FLIRT signature files MSVC2017的sig文件☆15Updated 5 years ago
- Kernel-mode file scanner☆18Updated 6 years ago
- Kernel Shellcode to add all privileges in token☆13Updated 7 years ago
- XPN's RpcEnum but based on IDA instead of Ghidra☆21Updated 5 years ago
- Slides of 44Con 2018☆21Updated 6 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22Updated 7 years ago
- Control Flow Guard bypass using LoadLibrary and IsBadCodePtr☆45Updated 8 years ago
- Windbg extension that allows you analyze Control Flow Guard map☆34Updated 3 years ago
- ☆14Updated 7 years ago
- ☆19Updated 5 years ago
- API logger plugin for Intel Pintool☆14Updated 7 years ago
- DbgFlashVul☆12Updated 9 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆34Updated 6 years ago
- Reverse engineering toolkit for exploit/malware analysis☆35Updated 4 years ago
- Allows you to add breakpoints from IDA (from the graph/text view) to WinDbg easily☆14Updated 6 years ago
- reversed emet tool☆24Updated 12 years ago
- ☆15Updated 5 years ago
- vm -- code interpreter☆26Updated 5 years ago
- ☆11Updated 4 years ago
- Malwarebytes Antivirus CVE☆8Updated 7 years ago
- User-mode part of Zerokit platform☆20Updated 5 years ago
- Windows build files for the VMHunt Intel PIN Trace tool☆19Updated 6 years ago
- ☆18Updated 6 years ago
- ☆13Updated 3 years ago
- enable libemu run pe file and add some good modify☆14Updated 6 years ago
- ☆33Updated 2 years ago
- Windows device tree walker☆15Updated 6 years ago
- Legal access: The driver and console app to demonstrate the basic memory access in kernel mode☆9Updated 7 years ago