y11en / r0ak
r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
☆14Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for r0ak
- 一些研究☆14Updated 4 years ago
- Kernel-mode file scanner☆17Updated 6 years ago
- KernelBugTest☆15Updated 6 years ago
- ☆19Updated 5 years ago
- Kernel Shellcode to add all privileges in token☆13Updated 7 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆21Updated 7 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆34Updated 6 years ago
- IDA PRO FLIRT signature files MSVC2017的sig文件☆15Updated 5 years ago
- HTTP/HTTPS/DNS inspector (windows driver)☆24Updated 5 years ago
- Using Undocumented NTDLL Functions to Read/Write/Delete File☆18Updated 3 years ago
- Legal access: The driver and console app to demonstrate the basic memory access in kernel mode☆9Updated 6 years ago
- vm -- code interpreter☆26Updated 5 years ago
- ☆13Updated 2 years ago
- Control Flow Guard bypass using LoadLibrary and IsBadCodePtr☆45Updated 7 years ago
- Easily hook WIN32 x64 functions☆17Updated last week
- Malwarebytes Antivirus CVE☆8Updated 6 years ago
- Windows device tree walker☆15Updated 6 years ago
- Slides of 44Con 2018☆21Updated 6 years ago
- Import debugging traces from WinDBG into IDA. Color the graph, fill in the value of all the operands, etc.☆25Updated 12 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆26Updated 7 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.☆24Updated 6 years ago
- Allows you to add breakpoints from IDA (from the graph/text view) to WinDbg easily☆14Updated 6 years ago
- ☆15Updated 5 years ago