Alternatives and similar repositories for Win-Driver-EXP

Users that are interested in Win-Driver-EXP are comparing it to the libraries listed below

• L4ys / IDA-WPP-Remover
  Remove WPP calls from hexrays decompiled code
  ☆54Updated 8 months ago
• heyheysky / vulnerable-driver
  ☆22Updated 11 months ago
• zeze-zeze / WindowsKernelVuln
  ☆62Updated 2 years ago
• Nero22k / Exploits
  Repo with different exploits & PoCs
  ☆64Updated 7 months ago
• xforcered / Windows_MSKSSRV_LPE_CVE-2023-36802
  LPE exploit for CVE-2023-36802
  ☆24Updated 2 years ago
• exploits-forsale / prefetch-tool
  Windows KASLR bypass using prefetch side-channel
  ☆172Updated last year
• alfarom256 / HPHardwareDiagnostics-PoC
  PoC exploit for HP Hardware Diagnostic's EtdSupp driver
  ☆50Updated 2 years ago
• tandasat / CVE-2023-36427
  Report and exploit of CVE-2023-36427
  ☆88Updated 2 years ago
• tinysec / rtypes
  A simple but useful project maybe help you reverse Windows.
  ☆41Updated last year
• RomanRybachek / CVE-2024-20698
  Analysis of the vulnerability
  ☆50Updated last year
• ommadawn46 / HEVD-BufferOverflowNonPagedPoolNx-Win10-22H2
  HEVD Exploit: BufferOverflowNonPagedPoolNx on Windows 10 22H2 - Escalating from Low Integrity to SYSTEM via Aligned Chunk Confusion
  ☆63Updated 8 months ago
• gabriellandau / ShadowStackWalk
  Finding Truth in the Shadows
  ☆119Updated 2 years ago
• carlos-al / user-kernel-syscall-hook
  ☆93Updated last year
• Xacone / Eneio64-Driver-Exploits
  A serie of exploits targeting eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W
  ☆105Updated 2 months ago
• tyranid / windows-memory-access-traps
  A few examples of how to trap virtual memory access on Windows.
  ☆38Updated last year
• MrAle98 / ATDCM64a-LPE
  ☆21Updated 11 months ago
• D4m0n / CVE-2025-50168-pwn2own-berlin-2025
  CVE-2025-50168 Exploit PoC — Pwn2Own Berlin 2025 - LPE(Windows 11) winning bug.
  ☆130Updated last month
• CaledoniaProject / drivers-binaries
  Exploitable drivers, you know what I mean
  ☆154Updated last month
• keowu / Ryujin
  Ryūjin Protector - Is a Intel Arch - BIN2BIN - PE Obfuscation/Protection/DRM tool
  ☆274Updated last month
• jdu2600 / CFG-FindHiddenShellcode
  Walks the CFG bitmap to find previously executable but currently hidden shellcode regions
  ☆128Updated 2 years ago
• djolertrk / kovid-obfuscation-passes
  A set of LLVM and GCC based plugins that perform code obfuscation.
  ☆134Updated 2 months ago
• fortra / CVE-2022-37969
  Windows LPE exploit for CVE-2022-37969
  ☆136Updated 2 years ago
• UmaRex01 / HookSentry
  Check if your AV/EDR does inline hooking, displays the hooked functions and allows you to compare them with the original ones.
  ☆36Updated 7 months ago
• tandasat / CVE-2024-21305
  Report and exploit of CVE-2024-21305.
  ☆38Updated last year
• waleedassar / SimpleNTSyscallFuzzer
  ☆149Updated last year
• kkent030315 / Van1338
  A journal for $6,000 Riot Vanguard bounty.
  ☆66Updated 2 years ago
• shaygitub / windows-rootkit
  windows rootkit
  ☆60Updated last year
• 0vercl0k / symbolizer-rs
  A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.
  ☆98Updated last year
• uf0o / PyKD
  PyKD DLLs for x86 and x64 platforms
  ☆17Updated 2 years ago
• zeze-zeze / CYBERSEC2023-BYOVD-Demo
  ☆32Updated 2 years ago