CaledoniaProject/drivers-binaries external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

CaledoniaProject/drivers-binaries

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/CaledoniaProject/drivers-binaries)

Close

CaledoniaProject / drivers-binariesView on GitHubMore

• External links
• Readme badge

Exploitable drivers, you know what I mean

☆153Nov 16, 2025Updated 6 months ago

Alternatives and similar repositories for drivers-binaries

Users that are interested in drivers-binaries are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• zeze-zeze / HITCON-2023-Demo-CVE-2023-20562

  View on GitHub
  ☆61Aug 21, 2023Updated 2 years ago
• gabriellandau / ItsNotASecurityBoundary

  View on GitHub
  ☆202Jul 29, 2024Updated last year
• fortra / hw-call-stack

  View on GitHub
  Use hardware breakpoints to spoof the call stack for both syscalls and API calls
  ☆203Jun 6, 2024Updated last year
• aaaddress1 / knownDlls_Poison

  View on GitHub
  ☆26Dec 29, 2021Updated 4 years ago
• alfarom256 / CVE-2022-3699

  View on GitHub
  Lenovo Diagnostics Driver EoP - Arbitrary R/W
  ☆175Dec 5, 2022Updated 3 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• klezVirus / SilentMoonwalk

  View on GitHub
  PoC Implementation of a fully dynamic call stack spoofer
  ☆958Jul 20, 2024Updated last year
• deepinstinct / ContainYourself

  View on GitHub
  A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
  ☆318Aug 31, 2023Updated 2 years ago
• Dec0ne / DllNotificationInjection

  View on GitHub
  A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…
  ☆469Aug 23, 2023Updated 2 years ago
• Oxygen1a1 / callstack_spoof

  View on GitHub
  ☆133Sep 24, 2023Updated 2 years ago
• mathisvickie / KMAC

  View on GitHub
  Some usefull info when reverse engineering Kernel Mode Anti-Cheat
  ☆79Feb 20, 2023Updated 3 years ago
• Idov31 / Cronos

  View on GitHub
  PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.
  ☆625Sep 26, 2023Updated 2 years ago
• Xyrem / HyperDeceit

  View on GitHub
  HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…
  ☆381Jun 3, 2023Updated 2 years ago
• gmh5225 / CallMeWin32kDriver

  View on GitHub
  Load your driver like win32k.sys
  ☆256Aug 20, 2022Updated 3 years ago
• asaurusrex / DoppelGate

  View on GitHub
  DoppelGate relies on reading ntdll on disk to grab syscall stubs, and patches these syscall stubs into desired functions to bypass Userla…
  ☆125Mar 25, 2022Updated 4 years ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• br-sn / CheekyBlinder

  View on GitHub
  Enumerating and removing kernel callbacks using signed vulnerable drivers
  ☆593Jan 24, 2023Updated 3 years ago
• chompie1337 / Windows_MSKSSRV_LPE_CVE-2023-36802

  View on GitHub
  LPE exploit for CVE-2023-36802
  ☆166Oct 10, 2023Updated 2 years ago
• magicsword-io / LOLDrivers

  View on GitHub
  Living Off The Land Drivers
  ☆1,637May 20, 2026Updated last week
• xuanxuan0 / TiEtwAgent

  View on GitHub
  PoC memory injection detection agent based on ETW, for offensive and defensive research purposes
  ☆298Apr 10, 2021Updated 5 years ago
• 1401199262 / HookHvcallCodeVa

  View on GitHub
  ☆23May 8, 2023Updated 3 years ago
• itm4n / PPLmedic

  View on GitHub
  Dump the memory of any PPL with a Userland exploit chain
  ☆354Mar 17, 2023Updated 3 years ago
• zer0condition / NVDrv

  View on GitHub
  Abusing nvidia driver (nvoclock.sys) for physical/virtual memory and control register manipulation.
  ☆288Mar 16, 2026Updated 2 months ago
• MapleSwan / PageTableHook

  View on GitHub
  ☆143Dec 10, 2022Updated 3 years ago
• BeneficialCode / WmipCodeSamples

  View on GitHub
  What makes it page
  ☆17Aug 24, 2022Updated 3 years ago
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• WithSecureLabs / CallStackSpoofer

  View on GitHub
  A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)
  ☆573Apr 8, 2025Updated last year
• Nero22k / cve-2023-29360

  View on GitHub
  Exploit for CVE-2023-29360 targeting MSKSSRV.SYS driver
  ☆153Oct 12, 2023Updated 2 years ago
• thefLink / C-To-Shellcode-Examples

  View on GitHub
  ☆210Mar 22, 2021Updated 5 years ago
• fortra / CVE-2022-37969

  View on GitHub
  Windows LPE exploit for CVE-2022-37969
  ☆135Jul 11, 2023Updated 2 years ago
• alfarom256 / UserVAtoPhysical

  View on GitHub
  Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address
  ☆23Nov 22, 2021Updated 4 years ago
• floesen / KExecDD

  View on GitHub
  Admin to Kernel code execution using the KSecDD driver
  ☆269Apr 19, 2024Updated 2 years ago
• Cracked5pider / Stardust

  View on GitHub
  A modern 32/64-bit position independent implant template
  ☆1,336Mar 21, 2025Updated last year
• Kudaes / Elevator

  View on GitHub
  UAC bypass by abusing RPC and debug objects.
  ☆630Oct 19, 2023Updated 2 years ago
• fortra / CreateProcess

  View on GitHub
  A small PoC that creates processes in Windows
  ☆187Jun 6, 2024Updated last year
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• NUL0x4C / KnownDllUnhook

  View on GitHub
  Replace the .txt section of the current loaded modules from \KnownDlls\
  ☆306Sep 28, 2022Updated 3 years ago
• waleedassar / ALPC_CLIENT_SERVER

  View on GitHub
  Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.
  ☆21Jan 25, 2022Updated 4 years ago
• zoemurmure / CVE-2023-21768-AFD-for-WinSock-EoP-exploit

  View on GitHub
  ☆16Apr 21, 2023Updated 3 years ago
• zer0condition / GDRVLib

  View on GitHub
  Virtual and physical memory hacking library using gigabyte vulnerable driver
  ☆70Mar 16, 2026Updated 2 months ago
• kyleavery / AceLdr

  View on GitHub
  Cobalt Strike UDRL for memory scanner evasion.
  ☆1,016Jun 4, 2024Updated last year
• huntandhackett / process-cloning

  View on GitHub
  The Definitive Guide To Process Cloning on Windows
  ☆550Jan 3, 2024Updated 2 years ago
• namazso / MagicSigner

  View on GitHub
  Signtool for expired certificates
  ☆517Jun 10, 2023Updated 2 years ago