Find zero-days while you sleep. DeepZero is an automated vulnerability research framework that parses, decompiles, and analyzes thousands of Windows kernel drivers for exploitable IOCTLs natively using AI agents.

Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks

Android Memory Tools written in python for RAM data reading and writing process of android, linux and windows os's.

Semantic analysis engine for detecting vulnerability fixes in Windows kernel driver patches — 58 YAML rules, Ghidra decompilation, reachability tracing, and scoring

Call arbitrary Windows kernel-mode functions from Python on another machine

System info made easy - Python library to find system info on your computer. Requires python ≥ 3.7

Starting point for scripting in WinDbg, covering WinDbg native scripting, JavaScript, and PyKD (Python).

Token & Integrity Visualizer maps process tokens, privileges, and integrity levels with MITRE links and interactive privilege graphs.

Scalable Windows kernel driver vulnerability analysis pipeline — Karton + MWDB + Ghidra, with dashboards, alerting, and driver monitoring

Generate Ghidra-ready C headers from Windows kernel structs using public data from the Vergilius Project.