Alternatives and similar repositories for kernel-programming

Users that are interested in kernel-programming are comparing it to the libraries listed below

• frank2 / blenny
  A payload delivery system which embeds payloads in an executable's icon file!
  ☆74Updated last year
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆26Updated 2 years ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆32Updated 2 years ago
• rbmm / Services
  ☆18Updated 8 months ago
• MMitsuha / Tajimari
  the Open Source and Pure C++ Packer for eXecutables
  ☆21Updated 2 years ago
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆32Updated last year
• aaaddress1 / ntkrnlProtectScan
  One Click Tool to Scan All the Enabled Protection of current Windows NT Kernel
  ☆43Updated 2 years ago
• SpiralBL0CK / CVE-2024-40431-CVE-2022-25479-EOP-CHAIN
  CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)
  ☆45Updated 11 months ago
• theabysslabs / CVE-2022-21881
  POC of CVE-2022-21881 exploited at TianfuCup 2021 to escape Chrome Sandbox
  ☆21Updated 3 years ago
• hackerhouse-opensource / Gigabyte_ElevatePersist
  Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…
  ☆32Updated 2 years ago
• 0vercl0k / KEPaboo
  Neutralize KEPServerEX anti-debugging techniques
  ☆32Updated 2 years ago
• yo-yo-yo-jbo / anti_debugging_intro
  ☆26Updated 2 years ago
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆22Updated 2 years ago
• lleon1435 / Kernel_VADInjector
  Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver
  ☆50Updated last year
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆36Updated 3 years ago
• gkucherin / de4dot
  .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).
  ☆29Updated 3 years ago
• rbmm / DirectSysCall
  ☆12Updated 2 years ago
• EgeBalci / syscall_api
  ☆37Updated 2 years ago
• EvilBytecode / Eset-Unload
  Eset-Unload is a C++ tool that interacts with a process's loaded modules to identify and unload the ebehmoni.dll module, typically found …
  ☆12Updated 5 months ago
• Dump-GUY / VoiceC2_POC
  Simple POC of Voice C2 using Speech Recognition
  ☆13Updated 3 years ago
• Idov31 / talks-and-publications
  Released presentations of my talks + code that used during these talks
  ☆14Updated last year
• fr0gger / shellcode2exe_package
  x64 Windows package of the shellcode2exe tool
  ☆14Updated 4 years ago
• X-C3LL / memdlopen-lib
  ☆13Updated 2 years ago
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• xoreaxecx / PEmimic
  A PE morphing tool that allows you to mimic one executable file to another.
  ☆11Updated last year
• OtterHacker / CoffLoader
  ☆57Updated 2 years ago
• bartblaze / DotNet-MetaData
  Identifies metadata of .NET binary files.
  ☆21Updated last year
• uf0o / Counterfeit_Object_Oriented_Programming_COOP
  ☆13Updated 11 months ago
• hackerhouse-opensource / envschtasksuacbypass
  Bypass UAC elevation on Windows 8 (build 9600) & above.
  ☆56Updated 3 years ago
• yardenshafir / conference_talks
  Slides from various conference talks
  ☆37Updated 2 years ago