zodiacon / QuickAsm

Related projects ⓘ

Alternatives and complementary repositories for QuickAsm

• therealdreg / masm32-kernel-programming
  masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
  ☆115Updated last year
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆78Updated last year
• mrexodia / phnt-single-header
  Single header version of System Informer's phnt library.
  ☆184Updated 2 weeks ago
• hasherezade / thread_namecalling
  Process Injection using Thread Name
  ☆240Updated 2 months ago
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆148Updated 10 months ago
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆121Updated 2 years ago
• janoglezcampos / llvm-yx-callobfuscator
  LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.
  ☆255Updated 9 months ago
• Cracked5pider / LdrLibraryEx
  A small x64 library to load dll's into memory.
  ☆424Updated last year
• floesen / KExecDD
  Admin to Kernel code execution using the KSecDD driver
  ☆237Updated 6 months ago
• hfiref0x / WubbabooMark
  Debugger Anti-Detection Benchmark
  ☆290Updated 11 months ago
• yardenshafir / IoRingReadWritePrimitive
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆221Updated 2 years ago
• Fyyre / DrvMon
  Advanced driver monitoring utility.
  ☆201Updated 2 years ago
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆236Updated 2 years ago
• thesecretclub / riscy-business
  RISC-V Virtual Machine
  ☆201Updated last week
• zer0condition / ZeroThreadKernel
  Recursive and arbitrary code execution at kernel-level without a system thread creation
  ☆154Updated last year
• CognisysGroup / SweetDreams
  Implementation of Advanced Module Stomping and Heap/Stack Encryption
  ☆208Updated last year
• ElliotKillick / windows-vs-linux-loader-architecture
  Side-by-side comparison of the Windows and Linux (GNU) Loaders
  ☆287Updated 2 months ago
• can1357 / selene
  Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!
  ☆249Updated 2 weeks ago
• can1357 / hvdetecc
  Collection of hypervisor detections
  ☆182Updated last month
• 0vercl0k / snapshot
  WinDbg extension written in Rust to dump the CPU / memory state of a running VM
  ☆111Updated this week
• m417z / ntdoc
  Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers
  ☆157Updated 2 weeks ago
• thesecretclub / SandboxBootkit
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆259Updated 3 weeks ago
• zer0condition / ZeroHVCI
  Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…
  ☆174Updated 2 weeks ago
• notpidgey / EagleVM
  Native code virtualizer for x64 binaries
  ☆398Updated this week
• ElliotKillick / LdrLockLiberator
  For when DLLMain is the only way
  ☆349Updated 2 weeks ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆109Updated 4 months ago
• Idov31 / Jormungandr
  Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.
  ☆220Updated last year
• frank2 / packer-tutorial
  A tutorial on how to write a packer for Windows!
  ☆245Updated 10 months ago
• zeze-zeze / ioctlance
  A tool that is used to hunt vulnerabilities in x64 WDM drivers
  ☆163Updated 10 months ago
• tandasat / hvext
  The Windbg extension that implements commands helpful to study Hyper-V on Intel processors.
  ☆129Updated 3 weeks ago