Skip to content
/ IOCTL-Flooder Public

IOCTL-Flooder is a verbose tool designed to help with Windows driver fuzzing by brute forcing IOCTLs on loaded drivers. GetLastError is used to guess validity

10 stars 5 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

DownWithUp/IOCTL-Flooder

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
IOCTL-Flooder.c
IOCTL-Flooder.c
 
 
README.md
README.md
 
 

Repository files navigation

IOCTL-Flooder

IOCTL-Flooder is a verbose tool designed to help with Windows driver fuzzing by brute forcing IOCTLs on loaded drivers and uses GetLastError to guess if the IOCTL is valid. This program doesn't fuzz a driver, in the sense of trying random data types and addresses to find exploits, but just helps the analyst find valid IOCTLs. The code's comments may provide more information.

Example Use

IOCTL-Flooder [Target Device]

Target Device: A valid device name (usually created through IoCreateSymbolicLink)

Notes

Please feel free to modify this to fit your needs (Open Source for a reason!)
Also remember that not all drivers use IOCTLs and not all driver devlopers write proper error checking or return statements

About

IOCTL-Flooder is a verbose tool designed to help with Windows driver fuzzing by brute forcing IOCTLs on loaded drivers. GetLastError is used to guess validity

Topics

winapi internals brute-force drivers ioctl

Resources

Readme
Activity

Stars

10 stars

Watchers

2 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages