Vulnerable driver research tool, result and exploit PoCs
☆235Nov 1, 2023Updated 2 years ago
Alternatives and similar repositories for VDR
Users that are interested in VDR are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆88Mar 2, 2025Updated last year
- ☆35Nov 16, 2023Updated 2 years ago
- ☆61Aug 21, 2023Updated 2 years ago
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆25Sep 29, 2023Updated 2 years ago
- ☆92Aug 16, 2025Updated 8 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- ☆66May 25, 2023Updated 2 years ago
- Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.☆244Sep 26, 2023Updated 2 years ago
- Stack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven☆268Oct 16, 2024Updated last year
- msFuzz is a coverage-guided fuzzer for Windows kernel drivers that utilizes Intel PT and leverages constraint and dependency analysis to …☆221Dec 24, 2025Updated 4 months ago
- Enumerate Callbacks and all Object Types☆16Jan 9, 2023Updated 3 years ago
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆412Jan 11, 2026Updated 3 months ago
- ☆156Oct 2, 2023Updated 2 years ago
- For when DLLMain is the only way☆431Oct 29, 2024Updated last year
- Implementation of Advanced Module Stomping and Heap/Stack Encryption☆226Jul 25, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- PoC module to demonstrate automated lateral movement with the Havoc C2 framework.☆313Dec 9, 2023Updated 2 years ago
- Exploitation of echo_driver.sys☆170Sep 16, 2023Updated 2 years ago
- Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths☆360Aug 11, 2024Updated last year
- A tool that is used to hunt vulnerabilities in x64 WDM drivers☆458Dec 7, 2025Updated 5 months ago
- Load a dynamic library from memory by modifying the native Windows loader☆296May 1, 2026Updated last week
- A small x64 library to load dll's into memory.☆462Nov 6, 2023Updated 2 years ago
- Replace the .txt section of the current loaded modules from \KnownDlls\☆306Sep 28, 2022Updated 3 years ago
- Self delete DLL (2)☆14Feb 15, 2024Updated 2 years ago
- Process injection alternative☆407Sep 6, 2024Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Reports and POCs for CVE 2024-43570 and CVE-2024-43535☆30Jun 7, 2025Updated 11 months ago
- EvtPsst☆55Oct 24, 2023Updated 2 years ago
- EDRSandblast-GodFault☆272Aug 28, 2023Updated 2 years ago
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.☆627Jan 2, 2025Updated last year
- This repo contains EXPs about Vulnerable Windows Driver☆48May 22, 2024Updated last year
- PoCs and tools for investigation of Windows process execution techniques☆957Feb 2, 2026Updated 3 months ago
- PoCs for Kernelmode rootkit techniques research.☆439Mar 25, 2026Updated last month
- Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).☆157Jan 21, 2023Updated 3 years ago
- Aims to identify sleeping beacons☆667Jan 25, 2026Updated 3 months ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class☆27Sep 15, 2023Updated 2 years ago
- Persistence via Shell Extensions☆64Aug 4, 2023Updated 2 years ago
- Security product hook detection☆330Mar 30, 2021Updated 5 years ago
- An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer☆549Feb 13, 2024Updated 2 years ago
- Helper idapython code for reversing kmdf drivers☆75Jul 20, 2022Updated 3 years ago
- Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.☆602Aug 2, 2025Updated 9 months ago
- Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book☆119Jun 30, 2024Updated last year