zeze-zeze / ioctlance
A tool that is used to hunt vulnerabilities in x64 WDM drivers
☆180Updated 2 weeks ago
Alternatives and similar repositories for ioctlance:
Users that are interested in ioctlance are comparing it to the libraries listed below
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆225Updated 2 years ago
- The Windbg extensions to study Hyper-V on Intel and AMD processors.☆150Updated this week
- ☆144Updated last year
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆128Updated 6 months ago
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.☆149Updated last year
- Static Binary Instrumentation tool for Windows x64 executables☆198Updated last month
- ☆142Updated last year
- A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …☆141Updated 2 years ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆244Updated 2 years ago
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆112Updated 4 months ago
- Single header version of System Informer's phnt library.☆196Updated this week
- Helpful WinDBG command for kernel debugging☆21Updated 4 years ago
- compile-time control flow obfuscation using mba☆181Updated last year
- LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.☆272Updated last year
- Unofficial Common Log File System (CLFS) Documentation☆169Updated 3 years ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆88Updated 3 years ago
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆192Updated 4 months ago
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆115Updated this week
- Process Injection using Thread Name☆248Updated 6 months ago
- Rusty Hypervisor - Windows UEFI Blue Pill Type-1 Hypervisor in Rust (Codename: Illusion)☆254Updated 6 months ago
- Admin to Kernel code execution using the KSecDD driver☆245Updated 10 months ago
- RISC-V Virtual Machine☆214Updated 3 weeks ago
- ☆12Updated 7 months ago
- Targeting Windows Kernel Driver Fuzzer☆161Updated last month
- An intuitive query API for IDA Pro☆155Updated 2 months ago
- Debugger Anti-Detection Benchmark☆309Updated last year
- ☆82Updated 9 months ago
- Bindings for Microsoft WinDBG TTD☆216Updated last year
- A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.☆90Updated 4 months ago