Keramas / WindowsKernelExploits
Repository for Windows 10 x64 kernel research, exploitation learning, and reference/supplementary code.
☆13Updated 4 years ago
Alternatives and similar repositories for WindowsKernelExploits:
Users that are interested in WindowsKernelExploits are comparing it to the libraries listed below
- NT AUTHORITY\SYSTEM☆39Updated 4 years ago
- Windows GPU rootkit PoC by Team Jellyfish☆35Updated 9 years ago
- Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.☆65Updated 3 years ago
- Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog☆13Updated 5 years ago
- Antivirus Emulator Fingerprints☆27Updated 6 years ago
- Cross-platform malware development library for anti-analysis techniques☆24Updated 3 years ago
- ☆31Updated 4 years ago
- ☆16Updated 3 years ago
- ☆20Updated 4 years ago
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆38Updated 3 years ago
- Parser for a custom executable format from Hidden Bee malware (first stage)☆41Updated 6 months ago
- Sources Codes of many Office Malwares☆16Updated 2 years ago
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆39Updated 4 years ago
- Released alongside with a talk at REcon 2023, TheRestarter is an interactive command-line tool is designed to interact with the Windows …��☆14Updated last year
- Code for blog written at 0xdarkvortex.dev Red Team TTPs Part 2☆18Updated 4 years ago
- Script(s) to assist with the setup of WinDBG & mona.py on a Windows 10 VM☆26Updated 2 years ago
- Component Services Volatile Environment LPE☆11Updated 3 months ago
- A simple injector that uses LoadLibraryA☆17Updated 4 years ago
- Visual Studio (C++) Solution Template for Payloads☆18Updated 5 years ago
- Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…☆19Updated 4 years ago
- Unamanged PS with Named Pipes☆9Updated 4 years ago
- A custom SentinelOne USB scanner.☆18Updated 2 years ago
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆52Updated 3 years ago
- Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)☆26Updated 4 years ago
- Rekall Memory Forensic Framework☆32Updated 5 years ago
- DLL hijacking vulnerability scanner and PE infector tool☆17Updated 7 years ago
- PoC code from blog☆16Updated 5 years ago
- ☆11Updated 5 years ago
- Analyze Windows Systems for common and unique vulnerabilities☆9Updated 2 years ago
- ☆21Updated 4 years ago