Alternatives and similar repositories for virtual_memory_known_dlls:

Users that are interested in virtual_memory_known_dlls are comparing it to the libraries listed below

• tyranid / windows-memory-access-traps
  A few examples of how to trap virtual memory access on Windows.
  ☆28Updated 3 months ago
• FuzzySecurity / BulkBindex
  Winbindex bot to pull in binaries for specific releases
  ☆47Updated last year
• airbus-cert / ttd2mdmp
  Extract data of TTD trace file to a minidump
  ☆28Updated last year
• tahadraidia / rp4windbg
  rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.
  ☆13Updated last year
• s4dbrd / ETWReader
  Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich
  ☆14Updated 8 months ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆31Updated last year
• qtc-de / rpv-web
  rpv-web is a browser based frontend for the rpv library
  ☆24Updated 7 months ago
• riesha / drv-vuln-scanner
  Finds imports that could be exploited, still requires manual analysis.
  ☆27Updated 2 years ago
• trailofbits / WinDbg-JS
  ☆23Updated last year
• SpecterOps / ipc-research
  Inter-Process Communication Mechanisms
  ☆26Updated 4 years ago
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆26Updated last year
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆42Updated last year
• forrest-orr / WizardOpium
  Google Chrome Use After Free
  ☆55Updated 2 years ago
• jq0904 / Conference-Presentations
  Slide of my conference presentations
  ☆12Updated 6 months ago
• t-tani / defender2yara
  Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules
  ☆46Updated this week
• Slowerzs / CryptDecryptMemory
  ☆29Updated 3 months ago
• uf0o / Counterfeit_Object_Oriented_Programming_COOP
  ☆11Updated 5 months ago
• 20urc3 / Aplos
  Aplos an extremely simple fuzzer for Windows binaries.
  ☆68Updated last month
• yardenshafir / conference_talks
  Slides from various conference talks
  ☆36Updated last year
• jbaines-r7 / dellicious
  Enabled / Disable LSA Protection via BYOVD
  ☆66Updated 3 years ago
• RobinFassinaMoschiniForks / TransitionalPeriod
  Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits
  ☆28Updated 2 years ago
• xforcered / Windows_MSKSSRV_LPE_CVE-2023-36802
  LPE exploit for CVE-2023-36802
  ☆22Updated last year
• EvanMcBroom / fuse-loader
  Load a dynamic library from memory using a fuse mount
  ☆30Updated last year
• mgrube / recon_22
  ☆10Updated 2 years ago
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆96Updated 11 months ago
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆29Updated last year
• dsnezhkov / elfpack
  ☆47Updated 2 years ago
• ic3qu33n / michelangelo-reanimator
  Michelangelo REanimator bootkit and REcon 2023 talk slides/materials
  ☆28Updated last year