0mWindyBug/KDP-compatible-driver-loader external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

0mWindyBug/KDP-compatible-driver-loader

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/0mWindyBug/KDP-compatible-driver-loader)

Close

0mWindyBug / KDP-compatible-driver-loaderView on GitHubMore

• External links
• Readme badge

KDP compatible unsigned driver loader leveraging a write primitive in one of the IOCTLs of gdrv.sys

☆166Jun 14, 2024Updated last year

Alternatives and similar repositories for KDP-compatible-driver-loader

Users that are interested in KDP-compatible-driver-loader are comparing it to the libraries listed below

• 0mWindyBug / GhostMapperUM

  View on GitHub
  manual map unsigned driver over signed memory
  ☆222Apr 11, 2024Updated last year
• 0mWindyBug / KernelInjector

  View on GitHub
  PoC kernel to usermode injection
  ☆106Feb 26, 2024Updated 2 years ago
• emlinhax / dse_hook

  View on GitHub
  load unsigned kernel-driver by patching dse in 248 lines
  ☆146Mar 22, 2024Updated last year
• 0mWindyBug / MinifilterHook

  View on GitHub
  silence file system monitoring components by hooking their minifilters
  ☆61Jan 31, 2024Updated 2 years ago
• zer0condition / GDRVLoader

  View on GitHub
  Unsigned driver loader using CVE-2018-19320
  ☆343Apr 9, 2023Updated 2 years ago
• 0mWindyBug / DataptrHooks

  View on GitHub
  ntoskrnl .data hooks for UM-KM communication
  ☆54May 26, 2024Updated last year
• vasie1337 / sharedsection-driver

  View on GitHub
  driver that communicates using a shared section
  ☆93Mar 17, 2025Updated last year
• ByteWhite1x1 / Driver-DKOM

  View on GitHub
  An advanced DKOM for drivers with "DRIVER_OBJECT"
  ☆22Feb 19, 2023Updated 3 years ago
• armvirus / CosMapper

  View on GitHub
  Loads a signed kernel driver which allows you to map any driver to kernel mode without any traces of the signed / mapped driver.
  ☆389Aug 8, 2021Updated 4 years ago
• donnaskiez / nmi

  View on GitHub
  nmi stackwalking + module verification
  ☆164Dec 28, 2023Updated 2 years ago
• zer0condition / NVDrv

  View on GitHub
  Abusing nvidia driver (nvoclock.sys) for physical/virtual memory and control register manipulation.
  ☆280Updated this week
• Spuckwaffel / Kernel-Thread-Driver

  View on GitHub
  This is a simple project of a driver + usermode.
  ☆169Jan 31, 2022Updated 4 years ago
• kkent030315 / anymapper

  View on GitHub
  x64 Windows kernel driver mapper, inject unsigned driver using anycall
  ☆204Feb 14, 2024Updated 2 years ago
• zer0condition / GDRVLib

  View on GitHub
  Virtual and physical memory hacking library using gigabyte vulnerable driver
  ☆71Updated this week
• zer0condition / ZeroThreadKernel

  View on GitHub
  Recursive and arbitrary code execution at kernel-level without a system thread creation
  ☆159Apr 13, 2023Updated 2 years ago
• SamuelTulach / DirectPageManipulation

  View on GitHub
  A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy
  ☆104Jun 26, 2023Updated 2 years ago
• stdhu / windows-kernel-pagehook

  View on GitHub
  windows kernel pagehook
  ☆42Oct 30, 2022Updated 3 years ago
• armvirus / SinMapper

  View on GitHub
  usermode driver mapper that forcefully loads any signed kernel driver (legit cert) with a big enough section (example: .data, .rdata) to …
  ☆475Jan 3, 2022Updated 4 years ago
• VollRagm / lpmapper

  View on GitHub
  A mapper that maps shellcode into loaded large page drivers
  ☆329Apr 26, 2022Updated 3 years ago
• xu-Wan / HypercallPageHook

  View on GitHub
  POC Hook of nt!HvcallCodeVa
  ☆54May 8, 2023Updated 2 years ago
• fengjixuchui / gdrv-loader

  View on GitHub
  Kernel driver loader using vulnerable gigabyte driver (https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vu…
  ☆277Oct 2, 2021Updated 4 years ago
• 0mWindyBug / WFPCalloutReserach

  View on GitHub
  research revolving the windows filtering platform callout mechanism
  ☆39May 26, 2024Updated last year
• zer0condition / ZeroHVCI

  View on GitHub
  Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…
  ☆255Oct 26, 2024Updated last year
• Flerov / EAKC-EnumAllKernelCallbacks

  View on GitHub
  Enumerate Callbacks and all Object Types
  ☆16Jan 9, 2023Updated 3 years ago
• AmitMoshel1 / PatchGuardEncryptorDriver

  View on GitHub
  A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.
  ☆78Mar 29, 2025Updated 11 months ago
• kprprivate / EAC-CR3-BYPASS

  View on GitHub
  A simple UM + KM example of how to bypass EAC CR3
  ☆186Oct 13, 2025Updated 5 months ago
• kkent030315 / anycall

  View on GitHub
  x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration
  ☆393Jul 6, 2022Updated 3 years ago
• YouNeverKnow00 / Kernelmode-DLL-Injector

  View on GitHub
  Simple Kernelmode DLL Injector with Manual mapping
  ☆340Nov 29, 2023Updated 2 years ago
• SamuelTulach / RwxMeme

  View on GitHub
  State of the art DLL injector that took 20 minutes to make
  ☆227Aug 16, 2023Updated 2 years ago
• Th3Spl / IoCreateDriver

  View on GitHub
  IoCreateDriver Implementation, it can be useful if you're trying to bypass anticheats
  ☆121Dec 4, 2025Updated 3 months ago
• rogxo / ReadPhys

  View on GitHub
  r/w virtual memory without attach
  ☆224Oct 19, 2023Updated 2 years ago
• DErDYAST1R / NmiCallbackBlocker

  View on GitHub
  Kernel Level NMI Callback Blocker
  ☆168Sep 27, 2025Updated 5 months ago
• crvvdev / MasterHide

  View on GitHub
  A x64 Windows Rootkit using SSDT or Hypervisor hook
  ☆566Jan 4, 2025Updated last year
• oakboat / RTCore64_Vulnerability

  View on GitHub
  Use RTCore64 to map your driver on windows 11.
  ☆152May 9, 2025Updated 10 months ago
• armvirus / VanguardTrace

  View on GitHub
  Decrypting and intercepting encrypted imports of Vanguards Kernel Driver
  ☆34Feb 13, 2024Updated 2 years ago
• Oliver-1-1 / DumpDriver

  View on GitHub
  ☆48Jul 7, 2024Updated last year
• cutecatsandvirtualmachines / SKLib

  View on GitHub
  Standard Kernel Library for Windows manipulation in C++
  ☆203Jun 18, 2025Updated 9 months ago
• MmMapIoSpace / UCMapper

  View on GitHub
  Unknowncheats Magically Optimized Tidy Mapper using nvaudio
  ☆153Jun 11, 2024Updated last year
• vasie1337 / kernel-anticheat

  View on GitHub
  kernel anticheat to test your driver against
  ☆184Jun 16, 2025Updated 9 months ago