zodiacon / ALPCLoggerLinks
Log ALPC activity
☆84Updated last year
Alternatives and similar repositories for ALPCLogger
Users that are interested in ALPCLogger are comparing it to the libraries listed below
Sorting:
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆144Updated 6 years ago
- File system minifilter driver for Windows to block symbolic link attacks.☆52Updated 4 years ago
- Windows RPC Python fuzzer☆163Updated 7 years ago
- Process Doppelgänging☆159Updated 7 years ago
- windbg plugin for win32k debugging☆75Updated 5 years ago
- Advance LPC☆69Updated 8 years ago
- Run any executable as SYSTEM account (no service required)☆134Updated last year
- kernel pool windbg extension☆84Updated 10 years ago
- Command like tool to print mitigation flags for running processes in a memory dump☆47Updated 4 years ago
- View handles and object for each object type☆65Updated 5 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆106Updated 5 years ago
- Idapython script to carve binary for internal RPC structures☆235Updated last year
- Simple 32/64-bit PEs loader.☆138Updated 6 years ago
- Explore Job Objects on a Windows system☆85Updated 5 years ago
- Reverse engineered source code of the autochk rootkit☆204Updated 5 years ago
- 0CCh Windbg extension: include some useful commands☆112Updated 2 years ago
- Helper idapython code for reversing kmdf drivers☆72Updated 3 years ago
- awesome-windows-security-development☆170Updated 7 years ago
- A Windows kernel dump C++ parser library with Python 3 bindings.☆203Updated last year
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆68Updated 5 years ago
- Local privilege escalation PoC exploit for CVE-2019-16098☆193Updated 5 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆224Updated 5 years ago
- An example of a client and server using Windows' ALPC functions to send and receive data.☆100Updated 6 months ago
- ☆82Updated 3 years ago
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆75Updated last year
- Hyper-V scripts☆126Updated last week
- Dumps information about all the callback objects found in a dump file and the functions registered for them☆36Updated 4 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆58Updated 5 years ago
- codes for my blog post: https://secrary.com/Random/InstrumentationCallback/☆179Updated 7 years ago
- Hyper-V Research is trendy now☆182Updated last year