Enumerate Callbacks and all Object Types
☆16Jan 9, 2023Updated 3 years ago
Alternatives and similar repositories for EAKC-EnumAllKernelCallbacks
Users that are interested in EAKC-EnumAllKernelCallbacks are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- it's a driver injector or driver loader header lib(Windows)☆13Aug 5, 2023Updated 2 years ago
- research revolving the windows filtering platform callout mechanism☆42May 26, 2024Updated 2 years ago
- TS-Changer - Forces the machine in/out of TestSigning Mode at runtime.☆63Aug 14, 2023Updated 2 years ago
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆70Mar 16, 2026Updated 2 months ago
- ☆17Dec 18, 2020Updated 5 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.☆57Sep 20, 2022Updated 3 years ago
- POC about how to prevent windbg break☆15Oct 3, 2022Updated 3 years ago
- Some eternal WIP stuff :)☆21Nov 18, 2025Updated 6 months ago
- Tartocitron is a repo to have fun with malwares and the Rust language. This repo provides working examples of dropper written in Rust.☆11May 31, 2022Updated 3 years ago
- Fragging SS7 for fun and profit☆20Nov 3, 2021Updated 4 years ago
- Hook syscalls from ring0 without triggering PatchGuard☆24Oct 29, 2025Updated 6 months ago
- 内存分析中玩贪吃蛇☆16Jan 13, 2024Updated 2 years ago
- some AV / EDR / analysis studies☆10May 21, 2023Updated 3 years ago
- browse microsoft driver server for potentially vulnerable drivers☆31May 7, 2024Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- The code is a pingback to the Dark Vortex blog: https://0xdarkvortex.dev/hiding-memory-allocations-from-mdatp-etwti-stack-tracing/☆214Jan 29, 2023Updated 3 years ago
- A curated list of Rust code and resources. With repository stars⭐ and forks🍴☆15May 20, 2026Updated last week
- KDP compatible unsigned driver loader leveraging a write primitive in one of the IOCTLs of gdrv.sys☆168Jun 14, 2024Updated last year
- POC Hook of nt!HvcallCodeVa☆55May 8, 2023Updated 3 years ago
- Rust crate to obfuscate strings and byte arrays so they are not in memory when not in use.☆21Apr 30, 2026Updated 3 weeks ago
- Source data & analysis of NSA SECONDDATE packet-injection framework☆11Apr 9, 2017Updated 9 years ago
- x64 Windows implementation of virtual-address to physical-address translation☆50Jun 3, 2021Updated 4 years ago
- hy-rs, pronounced high rise, provides a unified and portable to the hypervisor APIs provided by various platforms.☆20Mar 10, 2022Updated 4 years ago
- Dumps VAC(Valve Anti-Cheat) modules that get streamed and mapped while playing a VAC protected game☆11Apr 13, 2025Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- a kernel mode solution for detecting and prevent malicious threads creation in target process☆24May 11, 2026Updated 2 weeks ago
- Inject code into .net applications☆13Nov 7, 2018Updated 7 years ago
- ☆44Nov 18, 2024Updated last year
- UAC bypass abusing WinSxS in "wusa.exe". Referred from and similar to: https://github.com/L3cr0f/DccwBypassUAC , Kudos to L3cr0f and Fuz…☆31Jun 30, 2021Updated 4 years ago
- Hook all callbacks which are registered with LdrRegisterDllNotification☆99Apr 3, 2025Updated last year
- The WebAssembly Indirect Call Inliner☆28Oct 18, 2023Updated 2 years ago
- CVE-2024-43451 is a Windows NTLM vulnerability that allows an attacker to force authentication and capture NTLM hashes by using malicious…☆15Jan 21, 2025Updated last year
- ☆23Oct 15, 2024Updated last year
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆270Aug 31, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Vulnerable driver research tool, result and exploit PoCs☆239Nov 1, 2023Updated 2 years ago
- Modified version of Impacket to use dynamic NTLMv2 Challenge/Response☆20Dec 26, 2022Updated 3 years ago
- The modifyed cjson that can running on windows kernel☆16Mar 21, 2023Updated 3 years ago
- Overview of Microsoft Patch Tuesday☆14Sep 13, 2024Updated last year
- AD Pentest Cheatsheet by BlackWasp☆26Oct 10, 2022Updated 3 years ago
- A Dropper POC with a focus on aiding in EDR evasion, NTDLL Unhooking followed by loading ntdll in-memory, which is present as shellcode (…☆180Feb 10, 2023Updated 3 years ago
- ☆12Oct 20, 2016Updated 9 years ago