ykfre / BsodSurvivor
This project aims to facilitate debugging a kernel driver in windows by adding support for a code change on the fly without reboot/unload, and more!
☆172Updated 2 years ago
Alternatives and similar repositories for BsodSurvivor:
Users that are interested in BsodSurvivor are comparing it to the libraries listed below
- API monitoring via return-hijacking thunks; works without information about target function prototypes.☆117Updated 4 years ago
- C++ Exceptions in Windows Drivers☆208Updated 4 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆217Updated 5 years ago
- Tool to dump UEFI runtime drivers implementing runtime services for Windows☆96Updated 4 years ago
- ☆126Updated 7 months ago
- IDA Pro plugin to make bitfield accesses easier to grep☆236Updated 2 months ago
- Browse Page Tables on Windows (Page Table Viewer)☆198Updated 3 years ago
- Resolve DOS MZ executable symbols at runtime☆95Updated 3 years ago
- Header only wrapper around Hex-Rays API in C++20.☆158Updated 4 months ago
- A library to develop kernel level Windows payloads for post HVCI era☆403Updated 3 years ago
- Research on Windows Kernel Executive Callback Objects☆286Updated 5 years ago
- usermode standalone kernel interface☆110Updated 6 years ago
- Advanced driver monitoring utility.☆208Updated 2 years ago
- ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…☆205Updated 2 years ago
- A native hypervisor designed for the Windows operating system☆123Updated 4 years ago
- VAC3 (Valve Anti-Cheat 3) module emulator☆98Updated 4 years ago
- Global user-mode hooking framework, based on AppInit_DLLs. The goal is to allow you to rapidly develop hooks to inject in an arbitrary pr…☆170Updated 3 years ago
- A modern c++ implementation of windows heavens gate☆222Updated 4 years ago
- ☆141Updated 4 years ago
- Translates WinDbg "dt" structure dump to a C structure☆128Updated 8 years ago
- A Cross-Platform C++ parser library for Windows user minidumps with Python 3 bindings.☆202Updated 5 months ago
- Toy scripts for playing with WinDbg JS API☆228Updated 10 months ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆140Updated 6 years ago
- Analyze patches in a process☆251Updated 3 years ago
- MemoryRanger protects kernel data and code by running drivers and hosting data in isolated kernel enclaves using VT-x and EPT features. M…☆225Updated 4 years ago
- Lightweight type-1 hypervisor offering a foundation for building advanced security-focused functionality.☆259Updated 3 months ago
- A Windows kernel dump C++ parser library with Python 3 bindings.☆200Updated 9 months ago
- Yet another windows internals repo☆207Updated 3 years ago
- BYOVD: Loading dbk64.sys and grabbing a handle to it☆151Updated 2 years ago
- APC Internals Research Code☆166Updated 4 years ago