LOLDrivers Pipeline

LOLDrivers Pipeline Reference

A reference BYOVD (Bring Your Own Vulnerable Driver) pipeline is maintained in pipelines/loldrivers/.

discover: PE ingestion and LIEF header parsing.
kernel_filter: Constraints processing to kernel-mode drivers exposing IOCTL surfaces.
loldrivers_filter: Excludes known entities cataloged via loldrivers.io.
decompile: Executes Ghidra headless decompilation.
semgrep_scanner: Bulk static analysis against exported C source.
pick_top_10: Heuristic reduction to top candidate tier.
assess: LLM prompt injection and logical assessment.