zeze-zeze / ioctlance
A tool that is used to hunt vulnerabilities in x64 WDM drivers
☆183Updated 3 weeks ago
Alternatives and similar repositories for ioctlance:
Users that are interested in ioctlance are comparing it to the libraries listed below
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆225Updated 2 years ago
- Static Binary Instrumentation tool for Windows x64 executables☆198Updated last month
- ☆145Updated last year
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.☆151Updated last year
- The Windbg extensions to study Hyper-V on Intel and AMD processors.☆152Updated last week
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆131Updated 6 months ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆244Updated 2 years ago
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆113Updated 4 months ago
- compile-time control flow obfuscation using mba☆181Updated last year
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆88Updated 3 years ago
- Debugger Anti-Detection Benchmark☆311Updated last year
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆193Updated 4 months ago
- A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …☆141Updated 2 years ago
- ☆142Updated last year
- RISC-V Virtual Machine☆214Updated last month
- Unofficial Common Log File System (CLFS) Documentation☆172Updated 3 years ago
- Abusing exceptions for code execution.☆109Updated 2 years ago
- Helpful WinDBG command for kernel debugging☆22Updated 4 years ago
- LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.☆273Updated last year
- Single header version of System Informer's phnt library.☆202Updated last week
- Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks☆344Updated 4 months ago
- ☆73Updated 8 months ago
- ☆82Updated 9 months ago
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆115Updated 2 weeks ago
- Vulnerable driver research tool, result and exploit PoCs☆189Updated last year
- Admin to Kernel code execution using the KSecDD driver☆244Updated 11 months ago
- ☆158Updated 3 years ago
- APC Internals Research Code☆162Updated 4 years ago
- Rusty Hypervisor - Windows UEFI Blue Pill Type-1 Hypervisor in Rust (Codename: Illusion)☆252Updated 6 months ago
- ☆71Updated 3 weeks ago