Alternatives and similar repositories for NamedPipeMaster

Users that are interested in NamedPipeMaster are comparing it to the libraries listed below

• zeze-zeze / ioctlance
  A tool that is used to hunt vulnerabilities in x64 WDM drivers
  ☆203Updated 3 months ago
• Bw3ll / ROP_ROCKET
  ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…
  ☆125Updated last week
• zeze-zeze / CYBERSEC2023-BYOVD-Demo
  ☆30Updated last year
• exploits-forsale / prefetch-tool
  Windows KASLR bypass using prefetch side-channel
  ☆102Updated last year
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆116Updated 11 months ago
• yardenshafir / IoRingReadWritePrimitive
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆228Updated 2 years ago
• gabriellandau / ItsNotASecurityBoundary
  ☆175Updated 11 months ago
• floesen / KExecDD
  Admin to Kernel code execution using the KSecDD driver
  ☆251Updated last year
• TheN00bBuilder / cve-2024-11477-writeup
  CVE-2024-11477 7Zip Code Execution Writeup and Analysis
  ☆62Updated 6 months ago
• ommadawn46 / HEVD-BufferOverflowNonPagedPoolNx-Win10-22H2
  HEVD Exploit: BufferOverflowNonPagedPoolNx on Windows 10 22H2 - Escalating from Low Integrity to SYSTEM via Aligned Chunk Confusion
  ☆53Updated 2 months ago
• MrAle98 / CVE-2025-21333-POC
  POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY
  ☆194Updated 2 months ago
• ucsb-seclab / popkorn-artifact
  ☆70Updated 2 years ago
• janoglezcampos / llvm-yx-callobfuscator
  LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.
  ☆290Updated last year
• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆74Updated 5 months ago
• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆107Updated 8 months ago
• BTtea / CVE-2024-4577-RCE-PoC
  CVE-2024-4577 RCE PoC
  ☆24Updated 7 months ago
• t-tani / defender2yara
  Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules
  ☆93Updated this week
• zeze-zeze / 2023iThome
  ☆37Updated 7 months ago
• waleedassar / SimpleNTSyscallFuzzer
  ☆145Updated last year
• 0vercl0k / snapshot
  WinDbg extension written in Rust to dump the CPU / memory state of a running VM
  ☆117Updated last month
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆206Updated last month
• hugsy / recon_2024_windbg_workshop
  ☆74Updated 11 months ago
• synacktiv / keebcap
  Win32 keylogger that supports all (non-ime using) languages correctly
  ☆50Updated last year
• Nero22k / cve-2023-29360
  Exploit for CVE-2023-29360 targeting MSKSSRV.SYS driver
  ☆149Updated last year
• zerozenxlabs / CVE-2023-36424
  Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation
  ☆127Updated last year
• TakahiroHaruyama / VDR
  Vulnerable driver research tool, result and exploit PoCs
  ☆195Updated last year
• zeze-zeze / WindowsKernelVuln
  ☆56Updated 2 years ago
• Friends-Security / RedirectThread
  Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techn…
  ☆173Updated last week
• fortra / CVE-2024-6769
  Activation cache poisoning to elevate from medium to high integrity (CVE-2024-6769)
  ☆72Updated 9 months ago
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆112Updated 9 months ago