Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.
☆50Aug 31, 2020Updated 5 years ago
Alternatives and similar repositories for CVE-Stockpile
Users that are interested in CVE-Stockpile are comparing it to the libraries listed below
Sorting:
- PoC code for CVE-2018-15499 (exploit race condition for BSoD)☆11Aug 23, 2018Updated 7 years ago
- WhoCalls can query a directory of files, find the binaries, and search for a user specified Win API import. It and works with both 32-bit…☆18Jul 2, 2022Updated 3 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆58Jun 21, 2020Updated 5 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆104May 14, 2020Updated 5 years ago
- Toolkit for Hyper-V security research☆157Mar 7, 2022Updated 3 years ago
- A simple kernel mode driver that hooks some values at the KUSER_SHARED_DATA structure.☆27Jan 7, 2020Updated 6 years ago
- Quarantine bypass and RCE vulnerability in Sketch (proof-of-concept)☆13Nov 22, 2021Updated 4 years ago
- copy of tdifw lib☆10Jun 15, 2017Updated 8 years ago
- You don't need install any wdk for development kernel driver☆24Jul 20, 2018Updated 7 years ago
- Allows installing or booting Operating Systems via PXE over the Network. We hopefully can implement RBCP (Intels Remote Boot Configuratio…☆15Jul 23, 2025Updated 7 months ago
- Windows file system driver which allows to block access to files at run-time (C/C++, C#, WDK, SDK)☆13Jan 1, 2023Updated 3 years ago
- OLE Structured Storage Tool☆28May 26, 2025Updated 9 months ago
- Open Course for diving security internal☆52Nov 11, 2019Updated 6 years ago
- Simple program for static hooking dynamic libraries in executable application☆24Jan 15, 2014Updated 12 years ago
- A tool evaluates security configurations of a given PE based on SDL without source code☆15Jul 6, 2014Updated 11 years ago
- Forked from Akayan. Windows Kernel Exploitation. Static & dynamic analysis, exploits & vuln reasearch. Mitigations bypass's, genric bug-c…☆16Oct 29, 2024Updated last year
- POC for a race condition exploit using directory junctions in Windows☆17Apr 26, 2020Updated 5 years ago
- manual mapping injector☆29Sep 28, 2025Updated 5 months ago
- kernel pool windbg extension☆83Jul 23, 2015Updated 10 years ago
- ☆25Mar 3, 2019Updated 6 years ago
- Proof of Concept code for CVE-2020-0728☆47Feb 12, 2020Updated 6 years ago
- Analysing and defeating PatchGuard universally☆36Nov 4, 2020Updated 5 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆65Jun 19, 2019Updated 6 years ago
- A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial☆16Jun 22, 2019Updated 6 years ago
- x64HOOK库☆18Jan 14, 2020Updated 6 years ago
- ☆21Sep 6, 2018Updated 7 years ago
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆55Jul 8, 2022Updated 3 years ago
- win32k use-after-free poc☆71Apr 22, 2020Updated 5 years ago
- Bootkits☆19Sep 13, 2023Updated 2 years ago
- User-mode part of Zerokit platform☆22Mar 30, 2019Updated 6 years ago
- Translates WinDbg "dt" structure dump to a C structure☆134Oct 16, 2016Updated 9 years ago
- win10 pgContext dynamic dump (btc version)☆110Jan 15, 2020Updated 6 years ago
- a frame of amd-v svm nest☆53Apr 7, 2020Updated 5 years ago
- Bare Boot. EFI bootloader for Mac OS, Windows, Linux etc☆57Dec 18, 2019Updated 6 years ago
- A plugin for x64dbg.☆24Apr 25, 2021Updated 4 years ago
- A programmable and rootkit-like Windows remote access tool.☆149Jan 6, 2026Updated last month
- a simple intel vt code both support x86 & x64. PatchGuard monitor.☆77Oct 28, 2021Updated 4 years ago
- A file system filter, you can do some interesting thing, maybe it's cool.☆55Feb 15, 2019Updated 7 years ago
- ☆152Jan 7, 2020Updated 6 years ago