This repo for Windows x32-x64 Kernel/User Mode Exploitation writeups and exploits
☆24Oct 20, 2025Updated 5 months ago
Alternatives and similar repositories for WinPWN
Users that are interested in WinPWN are comparing it to the libraries listed below
Sorting:
- Here you can find some vulnerable Windows Kernel Drivers☆13Feb 21, 2025Updated last year
- I have created these custom servers for preparing EXP-301 course (aka WUMED) exam and hope it will help to take OSED certification. Feel …☆51Nov 15, 2023Updated 2 years ago
- break link between dll and it file on disk☆12Sep 2, 2024Updated last year
- Tool for obtaining information about PPL processes☆16Feb 12, 2024Updated 2 years ago
- AD Pentest Cheatsheet by BlackWasp☆23Oct 10, 2022Updated 3 years ago
- The Swiss army knife of evasion tool that bypasses AMSI, Applocker, and CLM mode simultaneously.☆27Mar 9, 2024Updated 2 years ago
- NSA Hacking Tool Recreation UnitedRake☆13Jul 11, 2019Updated 6 years ago
- Minimal header-only C++11 argument parser library for simple command line tools.☆25Feb 2, 2025Updated last year
- A simple Meterpreter stager written in Rust.☆45Nov 2, 2025Updated 4 months ago
- a small curation of created/stolen scripts for reverse engineering☆12May 3, 2024Updated last year
- BinjaryNinja plugin for a ShellStorm like assembly/disassembly experience☆17Nov 28, 2024Updated last year
- bring your own clean ntdll (or other MS dlls)☆29Jul 14, 2025Updated 8 months ago
- remote process injections using pool party techniques☆70Jun 29, 2025Updated 8 months ago
- ☆16Jun 15, 2025Updated 9 months ago
- A python polymorphic engine for C programs☆11Dec 8, 2023Updated 2 years ago
- ☆108Aug 21, 2024Updated last year
- Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH☆140Aug 31, 2025Updated 6 months ago
- ☆13Sep 8, 2024Updated last year
- This repository implements Threadless Injection in C☆172Dec 23, 2023Updated 2 years ago
- Your NTDLL vaccine from modern direct syscall methods.☆36Apr 5, 2022Updated 3 years ago
- The Binary Code Recognition Library for game hacking/modding and function reidentification for linux☆13Jan 25, 2026Updated last month
- Enumerate Callbacks and all Object Types☆16Jan 9, 2023Updated 3 years ago
- Just another Process Injection using Process Hollowing technique.☆18Sep 18, 2023Updated 2 years ago
- Source data & analysis of NSA SECONDDATE packet-injection framework☆11Apr 9, 2017Updated 8 years ago
- AI modular structure that provides automation-based attack and penetration☆14May 10, 2024Updated last year
- A slightly more fun way to disable windows defender☆52May 4, 2025Updated 10 months ago
- Bypass LSA protection using the BYODLL technique☆172Sep 21, 2024Updated last year
- This PowerShell script applies a memory patch to bypass the Antimalware Scan Interface (AMSI), allowing unrestricted execution of PowerSh…☆14Jun 2, 2024Updated last year
- Fork of the kernel backports repository☆12Aug 5, 2025Updated 7 months ago
- ☆12Aug 25, 2023Updated 2 years ago
- Just a simple silly PoC demonstrating executable "exe" file that can be used like exe, dll or shellcode...☆169Sep 12, 2024Updated last year
- A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader☆45Sep 25, 2024Updated last year
- FlipperZero Database for german signals☆12May 3, 2023Updated 2 years ago
- Trojan written in C++ for Windows☆20Mar 12, 2024Updated 2 years ago
- manual mapping injector☆29Sep 28, 2025Updated 5 months ago
- Windows kernel driver that detects hypervisors by probing SIDT/LIDT edge cases, paging/TLB behaviors, privilege transitions, and timing e…☆37Mar 3, 2026Updated 2 weeks ago
- Generic PE loader for fast prototyping evasion techniques☆245Jul 2, 2024Updated last year
- Persistence techniques for windows.☆19Jun 26, 2023Updated 2 years ago
- Red Team list and cheat sheets☆11Jul 7, 2024Updated last year