31 results found Sort:

winfsp
winfsp winfsp
485
6.7k
other
140
Windows File System Proxy - FUSE for Windows
fuse gplv3 driver kernel windows filesystem windows-kernel
Created 2016-05-18
3,050 commits to master branch, last one 10 days ago
HyperDbg
HyperDbg HyperDbg
354
2.7k
gpl-3.0
86
State-of-the-art native debugging tool
ept chip fpga hook debug hwdbg debugger hardware hyperdbg security debugging hypervisor debugging-tool logic-analyzer security-tools windows-kernel binary-analysis kernel-debugger malware-analysis reverse-engineering
Created 2020-01-01
2,238 commits to master branch, last one 4 days ago
rabbitstack
fibratus rabbitstack
184
2.1k
other
71
A modern tool for Windows kernel exploration and tracing with a focus on security
edr golang python windows security windows-kernel instrumentation
Created 2016-03-25
914 commits to master branch, last one 14 days ago
tandasat
HyperPlatform tandasat
401
1.5k
mit
108
Intel VT-x based hypervisor aiming to provide a thin VM-exit filtering platform on Windows.
driver hypervisor windows-kernel virtual-machine
Created 2016-02-26
164 commits to master branch, last one 6 months ago
vitoplantamura
BugChecker vitoplantamura
126
897
lgpl-2.1
36
SoftICE-like kernel debugger for Windows 11
windows-kernel kernel-debugger
Created 2023-01-02
6 commits to master branch, last one 11 months ago
daem0nc0re
PrivFu daem0nc0re
109
682
bsd-3-clause
13
Kernel mode WinDbg extension and PoCs for token privilege investigation.
windbg windows windows-kernel windbg-extension
Created 2021-12-28
438 commits to main branch, last one about a month ago
can1357
NtRays can1357
63
486
bsd-3-clause
17
Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
hex-rays ntoskrnl windows-kernel hex-rays-decompiler
Created 2021-11-30
40 commits to master branch, last one 3 months ago
winfsp
winspd winfsp
51
410
other
32
Windows Storage Proxy Driver - User mode disk storage
disk scsi gplv3 driver kernel storage windows windows-kernel
Created 2018-10-15
440 commits to master branch, last one 3 years ago
KelvinMsft
kHypervisor KelvinMsft
133
389
mit
37
kHypervisor is a lightweight bluepill-like nested VMM for Windows, it provides and emulating a basic function of Intel VT-x
vt-x vcpus kernel windbg hyperplatform virtualization windows-kernel vm-entry-emulation nested-virtualization virtualization-based-security
Created 2016-10-19
297 commits to master branch, last one 2 years ago
MiroKaku
ucxxrt MiroKaku
97
388
mit
15
The Universal C++ RunTime library, supporting kernel-mode C++ exception-handler and STL.
cpp stl cpp17-library windows-kernel exception-handler
Created 2020-02-29
142 commits to main branch, last one 17 days ago
jxy-s
stlkrn jxy-s
81
380
mit
12
C++ STL in the Windows Kernel with C++ Exception Support
cpp stl msvc cpp14 cpp17 cpp20 msvcrt msvcrtl cpp-library msvc-windows cpp14-library cpp17-library cpp20-library kernel-driver stl-containers windows-driver windows-kernel cpp-programming
Created 2021-06-27
14 commits to main branch, last one 10 months ago
daem0nc0re
AtomicSyscall daem0nc0re
49
348
bsd-3-clause
5
Tools and PoCs for Windows syscall investigation.
windows syscalls windows-kernel
Created 2022-03-29
69 commits to main branch, last one about a month ago
tandasat
SimpleSvmHook tandasat
71
326
mit
17
SimpleSvmHook is a research purpose hypervisor for Windows on AMD processors.
amd svm driver hypervisor windows-kernel virtual-machine
Created 2018-06-30
17 commits to master branch, last one 3 years ago
VoidSec
DriverBuddyReloaded VoidSec
47
301
gpl-3.0
14
Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks
ida idapython ida-plugin windows-driver windows-kernel driver-exploitation reverse-engineering
Created 2021-10-22
86 commits to main branch, last one about a year ago
tandasat
SimpleSvm tandasat
58
284
mit
19
A minimalistic educational hypervisor for Windows on AMD processors.
amd svm driver hypervisor windows-kernel virtual-machine
Created 2017-04-20
20 commits to master branch, last one 3 years ago
ntoskrnl7
crtsys ntoskrnl7
33
174
mit
6
C/C++ Runtime library for system file (Windows Kernel Driver) - Supports Microsoft STL
c cpp crt stl wdk ucrt cpp14 cpp17 cpp20 kernel modern-cpp kernel-driver kernel-module kernel-drivers windows-driver windows-kernel windows-drivers cruntime-library driver-programming
Created 2021-10-04
97 commits to main branch, last one about a year ago
daem0nc0re
SharpWnfSuite daem0nc0re
25
126
bsd-3-clause
2
C# Utilities for Windows Notification Facility
windows windows-kernel
Created 2021-12-02
142 commits to main branch, last one about a month ago
amiryeshurun
HyperWin amiryeshurun
38
118
gpl-3.0
7
A native hypervisor designed for the Windows operating system
ept vt-x intel-vt hypervisor assembly-x86 virtualization windows-kernel windows-hypervisor
Created 2020-07-31
359 commits to master branch, last one 3 years ago
therealdreg
masm32-kernel-programming therealdreg
12
112
unknown
3
masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
kernel masm32 drivers assembly-x86 windows-kernel driver-programming kernel-programming
Created 2023-07-21
2 commits to main branch, last one 10 months ago
0vercl0k
sic 0vercl0k
22
112
mit
12
Enumerate user mode shared memory mappings on Windows.
shm vad driver ntoskrnl windows-10 prototype-pte shared-memory windows-kernel
Created 2020-01-24
91 commits to master branch, last one 3 years ago
0dayResearchLab
msFuzz 0dayResearchLab
18
110
mit
4
Targeting Windows Kernel Driver Fuzzer
fuzzer kernel fuzzing windows research security fuzz-testing windows-kernel security-vulnerability windows-kernel-exploitation
Created 2023-11-06
504 commits to master branch, last one 4 months ago
SoftSec-KAIST
NTFuzz SoftSec-KAIST
22
88
mit
7
NTFUZZ: Enabling Type-Aware Kernel Fuzzing on Windows with Static Binary Analysis (IEEE S&P '21)
b2r2 fsharp fuzzer fuzzing kernel-fuzzer windows-kernel binary-analysis
Created 2021-04-26
8 commits to master branch, last one 2 years ago
Deputation
kernel_payload_comms Deputation
25
68
mit
4
A proof of concept demonstrating communication via mapped shared memory structures between a user-mode process and a kernel-mode payload on Windows 10 20H2.
driver kernel windbg payload virtual-memory windows-kernel virtual-machine
Created 2021-01-08
32 commits to master branch, last one 3 years ago
KiFilterFiberContext
windows-software-policy KiFilterFiberContext
4
63
unknown
4
Research on obfuscated licensing APIs / CLIP service in the Windows kernel
undocumented windows-kernel microsoft-warbird reverse-engineering
Created 2021-07-04
31 commits to master branch, last one about a year ago
Anonym0usWork1221
android-memorytool Anonym0usWork1221
10
51
gpl-3.0
4
Android Memory Tools written in python for RAM data reading and writing process of android, linux and windows os's.
cheat memory python termux windows profiler scripting game-cheats memory-tool cheat-script linux-kernel termux-cheats android-kernel windows-kernel memory-profiling memory-management android-memory-tool
Created 2022-04-24
74 commits to main branch, last one 7 months ago
danielkrupinski
KernelProcessList danielkrupinski
24
49
mit
5
Example Windows Kernel-mode Driver which enumerates running processes.
wdk driver native process windows kernel-mode process-list windows-kernel driver-programming kernel-mode-driver zwquerysysteminformation
Created 2019-11-25
12 commits to master branch, last one 4 years ago
SHA-MRIZ
DisplayMiniportHooking SHA-MRIZ
19
48
unknown
4
This repository has no description...
windows-kernel driver-programming kernel-mode-driver windows-kernel-hook
Created 2020-06-12
18 commits to master branch, last one 3 years ago
daem0nc0re
HEVD-CSharpKernelPwn daem0nc0re
17
46
unknown
2
CSharp Writeups for HackSys Extreme Vulnerable Driver
windows windows-kernel
Created 2021-11-07
4 commits to master branch, last one 2 years ago
yardenshafir
DpcWait yardenshafir
28
43
unknown
4
Driver demonstrating how to register a DPC to asynchronously wait on an object
dpc wait windows debugging windows-kernel windows-internals
Created 2020-11-09
11 commits to main branch, last one 3 years ago
SilverTuxedo
keval SilverTuxedo
5
43
mit
4
Call arbitrary Windows kernel-mode functions from Python on another machine
cpp ctypes python libclang ffi-wrapper research-tool windows-kernel
Created 2021-09-17
5 commits to master branch, last one 2 years ago