My Proof of Concept code for different publicly disclosed vulnerabilities
☆48May 15, 2024Updated last year
Alternatives and similar repositories for pocs
Users that are interested in pocs are comparing it to the libraries listed below
Sorting:
- Repository of different kernel drivers written while studying Windows NT Driver development☆12Apr 14, 2024Updated last year
- A simple UEFI bootkit made by @NSG650 and me.☆26Dec 29, 2024Updated last year
- allowing um r/w through km from um ioctl ™☆11Jan 2, 2022Updated 4 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆33Nov 14, 2020Updated 5 years ago
- ☆22Jan 15, 2025Updated last year
- Load a dynamic library from memory by modifying the native Windows loader☆286Jun 18, 2025Updated 9 months ago
- WinRemoteEnum is a module-based collection of operations achievable by a low-privileged domain user.☆13Oct 24, 2022Updated 3 years ago
- a dumb rpm/wpm example driver☆15Jun 7, 2021Updated 4 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆32Aug 12, 2022Updated 3 years ago
- Admin to Kernel code execution using the KSecDD driver☆264Apr 19, 2024Updated last year
- Example of building an application verifer DLL☆51Jun 1, 2024Updated last year
- An In-memory Embedding of CPython☆31May 24, 2021Updated 4 years ago
- ☆26Mar 10, 2022Updated 4 years ago
- StoneKeeper C2, an experimental EDR evasion framework for research purposes☆209Dec 25, 2024Updated last year
- rpv-web is a browser based frontend for the rpv library☆27Nov 21, 2025Updated 4 months ago
- Demonstrate the new FileDispositionInfoEx behavior☆15Nov 6, 2017Updated 8 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆25Mar 26, 2020Updated 5 years ago
- Self delete DLL (2)☆14Feb 15, 2024Updated 2 years ago
- Elevate arbitrary MSR writes to kernel execution.☆47Sep 3, 2023Updated 2 years ago
- break link between dll and it file on disk☆12Sep 2, 2024Updated last year
- Self Delete DLL☆22Feb 15, 2024Updated 2 years ago
- Rust template/library for implementing your own COFF loader☆72Jan 27, 2025Updated last year
- List the ETW provider(s) in the registration table of a process.☆80Sep 20, 2023Updated 2 years ago
- Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver☆55Oct 19, 2023Updated 2 years ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 11 months ago
- A simple Linux in-memory .so loader☆33Mar 29, 2023Updated 2 years ago
- driver manual mapper (outdated/for educational purposes)☆115May 17, 2019Updated 6 years ago
- BasicLDR: A Reflective DLL Loader☆14Jun 11, 2024Updated last year
- Extracted lua script from Defender mpavbase.vdm and mpasbase.vdm☆16Jul 5, 2024Updated last year
- ☆126Sep 1, 2024Updated last year
- small little public internal base/cheat i'm currently working on☆24Jul 19, 2019Updated 6 years ago
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆412Jan 11, 2026Updated 2 months ago
- shell code example☆68Dec 12, 2025Updated 3 months ago
- in-process powershell runner for BRC4☆48Oct 31, 2023Updated 2 years ago
- ☆11Nov 2, 2017Updated 8 years ago
- ☆59Feb 19, 2026Updated last month
- Using Microsoft Visual Studio 2019 Building A LLVM Out-Source-Tree Pass☆17Apr 30, 2020Updated 5 years ago
- ☆150Mar 22, 2024Updated last year
- ☆10Aug 23, 2017Updated 8 years ago