Projects in Awesome Lists by tandasat
A curated list of projects in awesome lists by tandasat .
https://github.com/tandasat/hyperplatform
Intel VT-x based hypervisor aiming to provide a thin VM-exit filtering platform on Windows.
driver hypervisor virtual-machine windows-kernel
Last synced: 15 May 2025
https://github.com/tandasat/HyperPlatform
Intel VT-x based hypervisor aiming to provide a thin VM-exit filtering platform on Windows.
driver hypervisor virtual-machine windows-kernel
Last synced: 21 Apr 2025
https://github.com/tandasat/ddimon
Monitoring and controlling kernel API calls with stealth hook using EPT
Last synced: 16 May 2025
https://github.com/tandasat/hypervisor-101-in-rust
The materials of "Hypervisor 101 in Rust", a one-day long course, to quickly learn hardware-assisted virtualization technology and its application for high-performance fuzzing on Intel/AMD processors.
Last synced: 16 May 2025
https://github.com/tandasat/Hypervisor-101-in-Rust
The materials of "Hypervisor 101 in Rust", a one-day long course, to quickly learn hardware-assisted virtualization technology and its application for high-performance fuzzing on Intel/AMD processors.
Last synced: 10 Apr 2025
https://github.com/tandasat/MiniVisorPkg
The research UEFI hypervisor that supports booting an operating system.
Last synced: 04 Apr 2025
https://github.com/tandasat/minivisorpkg
The research UEFI hypervisor that supports booting an operating system.
Last synced: 04 Apr 2025
https://github.com/tandasat/simplesvm
A minimalistic educational hypervisor for Windows on AMD processors.
amd driver hypervisor svm virtual-machine windows-kernel
Last synced: 16 May 2025
https://github.com/tandasat/simplesvmhook
SimpleSvmHook is a research purpose hypervisor for Windows on AMD processors.
amd driver hypervisor svm virtual-machine windows-kernel
Last synced: 07 Apr 2025
https://github.com/tandasat/exploitcapcom
This is a standalone exploit for a vulnerable feature in Capcom.sys
Last synced: 07 Apr 2025
https://github.com/tandasat/barevisor
A bare minimum hypervisor on AMD and Intel processors for learners.
Last synced: 04 Apr 2025
https://github.com/tandasat/memorymon
Detecting execution of kernel memory where is not backed by any image file
Last synced: 13 Apr 2025
https://github.com/tandasat/dotnethooking
Sample use cases of the .NET native code hooking technique
Last synced: 19 Dec 2024
https://github.com/tandasat/scripts_for_re
Python scripts for reverse engineering.
Last synced: 19 Dec 2024
https://github.com/tandasat/guardmon
Hypervisor based tool for monitoring system register accesses.
Last synced: 23 Nov 2024
https://github.com/tandasat/UefiVarMonitor
The runtime DXE driver monitoring access to the UEFI variables by hooking the runtime service table.
Last synced: 13 May 2025
https://github.com/tandasat/SmmExploit
The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303.
Last synced: 13 May 2025
https://github.com/tandasat/smmexploit
The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303.
Last synced: 16 Mar 2025
https://github.com/tandasat/uefivarmonitor
The runtime DXE driver monitoring access to the UEFI variables by hooking the runtime service table.
Last synced: 23 Nov 2024
https://github.com/tandasat/uefi-bios-security
Security Camp 2021 & GCC 2022
Last synced: 16 Mar 2025
https://github.com/tandasat/eopmon
Elevation of privilege detector based on HyperPlatform
Last synced: 23 Nov 2024
https://github.com/tandasat/UEFI-BIOS-Security
Security Camp 2021 & GCC 2022
Last synced: 10 Apr 2025
https://github.com/tandasat/findpg
Windbg extension to find PatchGuard pages
Last synced: 23 Nov 2024
https://github.com/tandasat/hvext
The Windbg extension that implements commands helpful to study Hyper-V on Intel processors.
Last synced: 23 Nov 2024
https://github.com/tandasat/winioctldecoder
IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.
Last synced: 23 Nov 2024
https://github.com/tandasat/kraft_dinner
Tool to dump UEFI runtime drivers implementing runtime services for Windows
Last synced: 23 Nov 2024
https://github.com/tandasat/hellosmm
This is an instruction to run your own SMM code.
Last synced: 23 Nov 2024
https://github.com/tandasat/cve-2023-36427
Report and exploit of CVE-2023-36427
Last synced: 23 Nov 2024
https://github.com/tandasat/debuglogger
A software driver that lets you log kernel-mode debug output into a file on Windows.
arm64 debugview device-driver windows
Last synced: 23 Nov 2024
https://github.com/tandasat/CVE-2023-36427
Report and exploit of CVE-2023-36427
Last synced: 13 May 2025
https://github.com/tandasat/helloamdhvpkg
HelloAmdHvPkg is a type-1 research hypervisor for AMD processors.
Last synced: 23 Nov 2024
https://github.com/tandasat/fu_hypervisor
A hypervisor hiding user-mode memory using EPT
Last synced: 23 Nov 2024
https://github.com/tandasat/hello-vt-rp
A simple hypervisor demonstrating the use of the Intel VT-rp (redirect protection) technology.
Last synced: 23 Nov 2024
https://github.com/tandasat/wpbt-builder
The simple UEFI application to create a Windows Platform Binary Table (WPBT) from the UEFI shell.
Last synced: 23 Nov 2024
https://github.com/tandasat/remotewritemonitor
A tool to help malware analysts tell that the sample is injecting code into other process.
Last synced: 23 Nov 2024
https://github.com/tandasat/scavenger
A minifilter driver preserves all modified and deleted files.
Last synced: 23 Nov 2024
https://github.com/tandasat/helloiommupkg
The sample DXE runtime driver demonstrating how to program DMA remapping.
Last synced: 23 Nov 2024
https://github.com/tandasat/dumpvtable
Generates a Python script to give public interface names in an ActiveX file to an IDB file.
Last synced: 23 Nov 2024
https://github.com/tandasat/drvloader
A command line tool to load and unload a device driver.
Last synced: 23 Nov 2024
https://github.com/tandasat/cve-2022-25949
A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.
Last synced: 23 Nov 2024
https://github.com/tandasat/cs_driver
A sample project for using Capstone from a driver in Visual Studio 2015
Last synced: 23 Nov 2024
https://github.com/tandasat/ProjectLoadTimeMonitor
The Visual Studio extension that measures load time of each project when a solution file is opened.
Last synced: 04 May 2025
https://github.com/tandasat/hyperplatform_log_parser
User-mode program parsing logs created by HyperPlatform
Last synced: 23 Nov 2024
https://github.com/tandasat/projectloadtimemonitor
The Visual Studio extension that measures load time of each project when a solution file is opened.
Last synced: 23 Nov 2024
https://github.com/tandasat/recon2024_demo
Provides commands to read from and write to arbitrary kernel-mode memory for users with the Administrator privilege. HVCI compatible. No test signing mode is required.
Last synced: 19 Apr 2025
https://github.com/tandasat/checksdl
A tool evaluates security configurations of a given PE based on SDL without source code
Last synced: 23 Nov 2024
https://github.com/tandasat/listworkitems
Lists work items being queued currently.
Last synced: 23 Nov 2024
https://github.com/tandasat/deviceopener
A command line tool to check if a specified device is accessible.
Last synced: 23 Nov 2024
https://github.com/tandasat/win32_debugout
Shows debug strings on DebubView from an attached process by win32_remote.exe.
Last synced: 23 Nov 2024
https://github.com/tandasat/ping_vmm
A user-mode program knocking at HyperPlatform's "backdoor"
Last synced: 23 Nov 2024
https://github.com/tandasat/list-uefi-configuration-tables
List UEFI Configuration Tables
Last synced: 23 Nov 2024
https://github.com/tandasat/scopedresource
Scoped Resource - Generic RAII Wrapper for the Standard Library by Peter Sommerlad and Andrew L. Sandoval
Last synced: 23 Nov 2024
https://github.com/tandasat/secruntimesample
A sample usege of SecRuntime.dll on Windows Phone
Last synced: 23 Nov 2024
https://github.com/tandasat/copyfiles
Copy files onto the IsolatedStorage so that you can download them using IsoStoreSpy.
Last synced: 16 Mar 2025
https://github.com/tandasat/shared
Manages files that are shared with multiple boxes.
Last synced: 16 Mar 2025