y11en / r0akLinks
r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
☆14Updated 6 years ago
Alternatives and similar repositories for r0ak
Users that are interested in r0ak are comparing it to the libraries listed below
Sorting:
- 一些研究☆14Updated 5 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆34Updated 7 years ago
- XPN's RpcEnum but based on IDA instead of Ghidra☆21Updated 5 years ago
- Reverse engineering toolkit for exploit/malware analysis☆35Updated 5 years ago
- vm -- code interpreter☆25Updated 6 years ago
- Control Flow Guard bypass using LoadLibrary and IsBadCodePtr☆45Updated 8 years ago
- Windows build files for the VMHunt Intel PIN Trace tool☆19Updated 6 years ago
- Slides of 44Con 2018☆21Updated 6 years ago
- ☆19Updated 6 years ago
- AllMemPro☆45Updated 7 years ago
- Windbg extension that allows you analyze Control Flow Guard map☆36Updated 3 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆58Updated 5 years ago
- Kernel Shellcode to add all privileges in token☆13Updated 8 years ago
- Kernel-mode file scanner☆18Updated 7 years ago
- Using GNU lightning to generate xor deobfuscation at runtime☆27Updated 7 years ago
- IDA PRO FLIRT signature files MSVC2017的sig文件☆15Updated 6 years ago
- Some python scripts are used to export userdata from huge idb(ida's database),ida 7.0 support only☆21Updated 6 years ago
- Green shellcode challenge tools☆22Updated 6 years ago
- 驱动层拦截web访问源码☆30Updated 7 years ago
- it can extract functions from .dll, .exe, .sys and it be work! :)☆38Updated 6 years ago
- ☆14Updated 7 years ago
- Import debugging traces from WinDBG into IDA. Color the graph, fill in the value of all the operands, etc.☆25Updated 12 years ago
- An API Monitor based on Instrumentation☆43Updated 7 years ago
- PoC code for CVE-2018-15499 (exploit race condition for BSoD)☆11Updated 6 years ago
- Using Undocumented NTDLL Functions to Read/Write/Delete File☆18Updated 4 years ago
- Use WinDBG to trace the Windows API calls of any Portable Executable file☆31Updated 8 years ago
- exploit termdd.sys(support kb4499175)☆59Updated 6 years ago
- Allows you to add breakpoints from IDA (from the graph/text view) to WinDbg easily☆14Updated 6 years ago
- ☆33Updated 7 years ago
- ☆33Updated 2 years ago