yo-yo-yo-jbo / virtual_memory_known_dlls

Related projects ⓘ

Alternatives and complementary repositories for virtual_memory_known_dlls

• FuzzySecurity / BulkBindex
  Winbindex bot to pull in binaries for specific releases
  ☆46Updated last year
• airbus-cert / ttd2mdmp
  Extract data of TTD trace file to a minidump
  ☆28Updated last year
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆30Updated last year
• tahadraidia / rp4windbg
  rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.
  ☆12Updated last year
• ioncodes / kdbg-driver-workstation
  ☆14Updated 2 years ago
• hasherezade / flareon2023
  ☆25Updated 3 weeks ago
• trailofbits / WinDbg-JS
  ☆24Updated last year
• ommadawn46 / HEVD-BufferOverflowNonPagedPoolNx-Win10-22H2
  HEVD Exploit: BufferOverflowNonPagedPoolNx on Windows 10 22H2 - Escalating from Low Integrity to SYSTEM via Aligned Chunk Confusion
  ☆39Updated 3 months ago
• uf0o / PyKD
  PyKD DLLs for x86 and x64 platforms
  ☆14Updated last year
• jq0904 / Conference-Presentations
  Slide of my conference presentations
  ☆11Updated 2 months ago
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆38Updated last year
• Dump-GUY / Get-PDInvokeImports
  Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…
  ☆51Updated 2 years ago
• forrest-orr / WizardOpium
  Google Chrome Use After Free
  ☆55Updated 2 years ago
• s4dbrd / ETWReader
  Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich
  ☆14Updated 4 months ago
• qtc-de / rpv-web
  rpv-web is a browser based frontend for the rpv library
  ☆25Updated 3 months ago
• ucsb-seclab / popkorn-artifact
  ☆60Updated 2 years ago
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆24Updated last year
• riesha / drv-vuln-scanner
  Finds imports that could be exploited, still requires manual analysis.
  ☆26Updated 2 years ago
• 20urc3 / Aplos
  Aplos an extremely simple fuzzer for Windows binaries.
  ☆66Updated 7 months ago
• DebugPrivilege / WindowsAP1
  Code samples that serve as references for Windows API functions
  ☆12Updated 5 months ago
• ionescu007 / hazmat5
  Local OXID Resolver (LCLOR) : Research and Tooling
  ☆33Updated 3 years ago
• AaLl86 / WindowsInternals
  Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book
  ☆101Updated 4 months ago
• exploits-forsale / prefetch-tool
  Windows KASLR bypass using prefetch side-channel
  ☆67Updated 6 months ago
• 0vercl0k / symbolizer-rs
  A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.
  ☆84Updated last month
• tandasat / CVE-2023-36427
  Report and exploit of CVE-2023-36427
  ☆87Updated last year
• jbaines-r7 / dellicious
  Enabled / Disable LSA Protection via BYOVD
  ☆62Updated 2 years ago
• cyberark / Fuzzer-V
  ☆30Updated last year
• SpiralBL0CK / CVE-2024-40431-CVE-2022-25479-EOP-CHAIN
  CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)
  ☆45Updated last month
• 0vercl0k / snapshot
  WinDbg extension written in Rust to dump the CPU / memory state of a running VM
  ☆111Updated 2 weeks ago
• NtQuerySystemInformation / Malware-RE-papers
  Here are some of my malware reversing papers that I will be publishing
  ☆31Updated 2 years ago