Keramas / WindowsKernelExploits
Repository for Windows 10 x64 kernel research, exploitation learning, and reference/supplementary code.
☆14Updated 4 years ago
Alternatives and similar repositories for WindowsKernelExploits:
Users that are interested in WindowsKernelExploits are comparing it to the libraries listed below
- NT AUTHORITY\SYSTEM☆39Updated 4 years ago
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆39Updated 5 years ago
- Antivirus Emulator Fingerprints☆28Updated 6 years ago
- A simple injector that uses LoadLibraryA☆17Updated 4 years ago
- File Write Weapon for Privilege Escalation To get SYSTEM☆18Updated 4 years ago
- Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog☆13Updated 5 years ago
- Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…☆19Updated 4 years ago
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆39Updated 3 years ago
- A custom SentinelOne USB scanner.☆18Updated 3 years ago
- Windows GPU rootkit PoC by Team Jellyfish☆35Updated 9 years ago
- Another Portable Executable files analysing stuff☆21Updated 13 years ago
- Recreating and reviewing the Windows persistence methods☆38Updated 3 years ago
- ☆16Updated 3 years ago
- Visual Studio (C++) Solution Template for Payloads☆18Updated 5 years ago
- Code for blog written at 0xdarkvortex.dev Red Team TTPs Part 2☆18Updated 4 years ago
- Adapt practically persistence steadiness strategies working at Windows 10 utilized by sponsored nation-state threat actors, as Turla, Pro…☆22Updated 4 years ago
- PoC code from blog☆16Updated 5 years ago
- Cross-platform malware development library for anti-analysis techniques☆24Updated 3 years ago
- The ORIGINAL decrypted copies of the Shadow Broker's equation_drug release. Contains Equation group's espionage DLL implants library. Use…☆18Updated 7 years ago
- Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.☆66Updated 3 years ago
- x64 Windows package of the shellcode2exe tool☆14Updated 4 years ago
- Parser for a custom executable format from Hidden Bee malware (first stage)☆43Updated 7 months ago
- The source code of the SLAE assignments documented at https://rastating.github.io/☆23Updated 6 years ago
- A repository where I share my injection implemintations☆29Updated 4 years ago
- AMSI detection PoC☆31Updated 5 years ago
- DLL hijacking vulnerability scanner and PE infector tool☆18Updated 7 years ago
- Sources Codes of many Office Malwares☆16Updated 2 years ago
- Python script to patch the reflective stub in a DLL☆24Updated 8 years ago
- Proof of concept - Covert Channel using Windows Filtering Platform (C#)☆21Updated 3 years ago
- ☆31Updated 4 years ago