Advanced PoC & Research for CVE-2026-0828 (Safetica) and CVE-2025-7771 (ThrottleStop). Analysis of BYOVD (Bring Your Own Vulnerable Driver) TTPs for Ring 0 process termination and physical memory R/W. Researching EDR-Killer patterns, PPL bypasses, and kernel-mode primitives used by MedusaLocker and other threat actors.
☆26Feb 4, 2026Updated 3 weeks ago
Alternatives and similar repositories for 0xKern3lCrush-Foreverday-BYOVD-CVE-2026-0828
Users that are interested in 0xKern3lCrush-Foreverday-BYOVD-CVE-2026-0828 are comparing it to the libraries listed below
Sorting:
- Cobalt Strike Aggressor Script for identifying security products on Windows hosts — six enumeration methods rated by noise level, from si…☆37Feb 6, 2026Updated 3 weeks ago
- ☆169Oct 21, 2025Updated 4 months ago
- Executing Kernel Routines via Syscall Table Hijack (Kernel Code Execution)☆57Jun 15, 2025Updated 8 months ago
- ☆58Dec 10, 2025Updated 2 months ago
- ☆54Oct 13, 2025Updated 4 months ago
- Block Windows Defender by deny ACL☆77Jan 12, 2026Updated last month
- Manage Shadows Copies via the VSS API using C#, C++, Crystal or Python. Working on Windows 11☆84Jan 26, 2026Updated last month
- Checker de cuentas Blim para android [TERMUX]☆11Jan 21, 2019Updated 7 years ago
- CVE-2024-41570: Havoc C2 0.7 Teamserver SSRF exploit☆74Sep 11, 2024Updated last year
- BOF to run PE in Cobalt Strike Beacon without console creation☆186Nov 23, 2025Updated 3 months ago
- A driver created to bypass the anti-cheat and r/w memory through it☆15Aug 3, 2024Updated last year
- 进程内优雅地拦截SPI/LSP模块。 Manage SPI/LSP in a graceful way within private process.☆11Dec 28, 2017Updated 8 years ago
- Driver Reverse & Exploitation☆82Sep 4, 2025Updated 5 months ago
- Python tool to automatically perform SPN-less RBCD attacks.☆120Jan 7, 2026Updated last month
- vm_str.hpp is a header only string obfuscator.☆105Aug 24, 2025Updated 6 months ago
- WinDbg plugin to trace module transitions from a debugged driver.☆40Dec 22, 2025Updated 2 months ago
- Windows 11 kernel research framework demonstrating DSE bypass on Windows 11 25H2 through boot-time execution. Loads unsigned drivers by s…☆82Dec 22, 2025Updated 2 months ago
- Making a lab and testing the CVE-2024-3116, a Remote Code Execution in pgadmin <=8.4☆12Apr 11, 2024Updated last year
- POC for CVE-2024-31982: XWiki Platform Remote Code Execution > 14.10.20☆10Jun 22, 2024Updated last year
- Scraping LegiFrance naturalisation decrees for fun and OSINT profit☆11May 27, 2023Updated 2 years ago
- A large collection of blogs 🦐☆13Apr 12, 2025Updated 10 months ago
- Multi-layered malware detection system using static analysis, dynamic browser automation, and external APIs for accurate website threat i…☆14Jun 3, 2025Updated 9 months ago
- Lists work items being queued currently.☆14Jun 7, 2015Updated 10 years ago
- Python-based proof-of-concept tool for generating payloads that utilize unsafe Java object deserialization.☆10Dec 6, 2021Updated 4 years ago
- Linux kernel module that provides remote backdoor using netfilters , file and pid hiding.☆11Apr 1, 2017Updated 8 years ago
- A simple server to act as a Veeam "honeypot" providing alerting for network scans for Veeam services☆15Aug 31, 2025Updated 6 months ago
- L3MON - Remote Android Managment Suite☆16Feb 4, 2020Updated 6 years ago
- A simulation of the RFCTF KOTH game.☆10Aug 14, 2020Updated 5 years ago
- Awesome MalDev Links☆39Updated this week
- ☆13Mar 17, 2025Updated 11 months ago
- forgive me :3☆32Jan 1, 2026Updated 2 months ago
- Binary Ninja Plugins to work with Unpac.Me unpacking service☆12Apr 24, 2025Updated 10 months ago
- 轻量级 Web 工具箱☆10Mar 22, 2025Updated 11 months ago
- A collection of hardware Trojans (HTs) automatically generated by Large Language Models (GPT-4, Gemini-1.5-pro, and LLaMA3) targeting SRA…☆11Oct 8, 2025Updated 4 months ago
- Mitigation validation utility for the Ivanti Connect Around attack chain. Runs multiple checks. CVE-2023-46805, CVE-2024-21887.☆12Feb 3, 2024Updated 2 years ago
- Windows device tree walker☆15Sep 19, 2018Updated 7 years ago
- Scan websites CSP policies and visualise their vunlnerabilities from a dashboard☆13Mar 11, 2025Updated 11 months ago
- 蜜罐检测工具,支持自动化URL去重、多线程控制及智能速率限制。可识别伪装服务。☆16Jun 5, 2025Updated 8 months ago
- Evasion kit for Cobalt Strike☆30Jan 16, 2026Updated last month