Ilja van Sprundel's repositories
IRPMon
The goal of the tool is to monitor requests received by selected device objects or kernel drivers. The tool is quite similar to IrpTracker but has several enhancements. It supports 64-bit versions of Windows (no inline hooks are used, only moodifications to driver object structures are performed) and monitors IRP, FastIo, AddDevice, DriverUnload and StartIo requests.
big-list-of-naughty-strings
The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.
dcrawl
Simple, but smart, multi-threaded web crawler for randomly gathering huge lists of unique domain names.
DriverBuddy
DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.
gopcapnative
portable pure Go packet sniffing with pcap-like API
msrd-dev-center
Microsoft Security Risk Detection Developer Center
mysql_client_libload
PoC for loading arbitrary shared libraries to mysql-client.
NtLua
Lua in kernel-mode because why not.
physmem_ko
An unrestricted /dev/mem implementation
regexploit
Find regular expressions which are vulnerable to ReDoS (Regular Expression Denial of Service)
rewolf-gogogadget
kernel exploitation helper class
Tutorial-Password-Manager-with-Intel-SGX
This sample code demonstrates a password manager utilizing Intel SGX.
virtualbox_e1000_0day
VirtualBox E1000 Guest-to-Host Escape
vscode-extension-highlight
vscode-extension-highlight