Alternatives and similar repositories for windows-kernel-exploits

Users that are interested in windows-kernel-exploits are comparing it to the libraries listed below

• rxwx / CVE-2017-11882
  Proof-of-Concept exploits for CVE-2017-11882
  ☆41Updated 8 years ago
• abatchy17 / Introduction-To-Manual-Backdooring
  Executables created while writing "Introduction to Manual Backdooring".
  ☆80Updated 8 years ago
• DamonMohammadbagher / NativePayload_DNS2
  C# code for Transferring Backdoor Payloads by DNS Traffic (A - PTR Records) and Bypassing Anti-viruses
  ☆45Updated 2 years ago
• lasq88 / deobfuscate
  Python script to automatically deobfuscate malware code
  ☆59Updated 7 years ago
• michael-yip / APTMalwareNotes
  A repository of open source reports on different malware families used in targeted cyber intrusions ("APT").
  ☆55Updated 10 years ago
• DamonMohammadbagher / NativePayload_ICMP
  C# code for Transferring Backdoor Payloads by ICMPv4 Traffic and bypassing Anti-Viruses
  ☆29Updated 2 years ago
• enigma0x3 / MessageBox
  PoC dlls for Task Scheduler COM Hijacking
  ☆94Updated 9 years ago
• nccgroup / mnemosyne
  A Generic Windows Memory Scraping Tool
  ☆71Updated 8 years ago
• sevagas / WindowsDefender_ASR_Bypass-OffensiveCon2019
  Public documents related to my talk "Bypass Windows Exploit Guard ASR" at Offensive Con 2019.
  ☆94Updated 6 years ago
• 649 / APT38-DYEPACK
  Reverse engineered APT38 DYEPACK samples used to empty SWIFT banking servers. Use caution when handling live binaries.
  ☆23Updated 6 years ago
• FuzzySecurity / BH-Arsenal-2019
  SilkETW & SilkService
  ☆40Updated 6 years ago
• curtbraz / Invoke-NeutralizeAV
  Quick PoC I Wrote for Bypassing Next Gen AV Remotely for Pentesting
  ☆41Updated 6 years ago
• SadProcessor / EmpireDog
  A collection of PowerShell Modules for BloodHound/Empire Orchestration
  ☆109Updated 8 years ago
• umarfarook882 / CVE-2019-0708
  CVE-2019-0708 - BlueKeep (RDP)
  ☆40Updated 5 years ago
• vysecurity / Invoke-ProcessScan
  Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
  ☆48Updated 8 years ago
• telsy-cyberops / research
  Telsy CTI Research Team
  ☆57Updated 5 years ago
• mortychannel / lnkexploit
  ☆43Updated 6 years ago
• DamonMohammadbagher / NativePayload_ARP
  C# code for Transferring Backdoor Payloads by ARP Traffic and Bypassing Anti-viruses (Slow)
  ☆44Updated 2 years ago
• matthewdunwoody / POSHSPY
  POSHSPY backdoor code
  ☆46Updated 8 years ago
• jacobsoo / ThreatHunting
  This is just my personal compilation of APT malware from whitepaper releases, documents and malware samples from my personal research.
  ☆31Updated 6 years ago
• ThisIsSecurity / malware
  ☆43Updated 7 years ago
• 3gstudent / bitsadminexec
  Use bitsadmin to maintain persistence and bypass Autoruns
  ☆67Updated 8 years ago
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Updated 7 years ago
• enigma0x3 / Powershell-C2
  ☆51Updated 12 years ago
• umarfarook882 / Windows-InstallerBypass
  Windows Installer Bypass using Rollback Script .rbs and .rbf - Race Condition
  ☆22Updated 6 years ago
• Ice3man543 / MalScan
  A Simple PE File Heuristics Scanners
  ☆53Updated 6 years ago
• roo7cause / Ps1jacker
  Ps1jacker is a tool for generating COM Hijacking payload.
  ☆60Updated 11 months ago
• Coalfire-Research / pymetasploit3
  Python3 Metasploit automation library
  ☆23Updated 3 years ago
• PinkP4nther / Sutekh
  An example rootkit that gives a userland process root permissions
  ☆78Updated 6 years ago
• aleksost / MemoryDecompression
  Tool to decompress data from Windows 10 page files and memory dumps, that has been compressed by the Windows 10 memory manager.
  ☆51Updated 6 years ago