A Windows 11 Rootkit. (Exploit has been patched)
☆16Sep 7, 2025Updated 5 months ago
Alternatives and similar repositories for Windows11-Kernel-Rootkit
Users that are interested in Windows11-Kernel-Rootkit are comparing it to the libraries listed below
Sorting:
- kASLR bypass technique on Intel CPUs.☆32May 18, 2025Updated 9 months ago
- Launch your SOC as fast as a rocket with only one command☆12Feb 17, 2025Updated last year
- Mockingjay process self injection POC☆44Aug 8, 2023Updated 2 years ago
- Command line & PPID spoofing☆29Apr 15, 2023Updated 2 years ago
- x64 version☆36Oct 8, 2021Updated 4 years ago
- Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techn…☆199Jun 17, 2025Updated 8 months ago
- MappingInjection via csharp☆40Nov 19, 2021Updated 4 years ago
- POC of PPID spoofing using NtCreateUserProcess with syscalls to create a suspended process and performing process injection by overwritti…☆41Sep 23, 2021Updated 4 years ago
- DotRat is a Telegram Rat which includes good features and non privileged persistence. Written in C#☆12Aug 14, 2023Updated 2 years ago
- Original hVNC has been recoded to work with all version of windows above XP. Thanks to the original author for this wonderful tool.☆10Oct 13, 2021Updated 4 years ago
- C++23 header-only web UI library☆19Nov 23, 2025Updated 3 months ago
- A rewrite of Open Hexagon☆12Updated this week
- ☆10Apr 23, 2024Updated last year
- Bypass anti-tethering and anti-hotspot sharing (TTL=1) using OpenWRT nftables on a Wi-Fi repeater or extender.☆13Aug 24, 2025Updated 6 months ago
- Two C# RunPE's capable of x86 and x64 injections☆11Dec 2, 2018Updated 7 years ago
- Cobalt Strike DNS beacon parser☆11Nov 29, 2021Updated 4 years ago
- Bypass YARA rule Windows_Trojan_CobaltStrike_f0b627fc by generating alternative shellcode sequences.☆52Oct 2, 2025Updated 4 months ago
- Three different shellcode techniques on the Windows Kernel☆15Apr 8, 2025Updated 10 months ago
- Loads NTDLL, parses the PE file, extracts "Zw" functions, retrieves their System Service Numbers (SSNs), and prints each function’s name,…☆15Apr 21, 2025Updated 10 months ago
- This script reads a text file containing domains, fetches the subdomains from crt.sh☆11May 31, 2023Updated 2 years ago
- This mod on 1.12.2 steals the entered passwords (Entered via /login)☆12May 24, 2022Updated 3 years ago
- Python JavaScript 逆向 爬虫☆10Jul 6, 2024Updated last year
- Assembly code to use for Windows kernel shellcode to edit winlogon.exe ACL☆13Mar 6, 2017Updated 8 years ago
- Whenever PowerShell is launched, Notepad will also open. You can customize the script for educational purposes, but I emphasize that I do…☆12Apr 21, 2025Updated 10 months ago
- Make your Batchfiles unreadable.☆10Dec 29, 2018Updated 7 years ago
- Decrypt Matrix42 Empirum /EIS Passwords☆14Mar 31, 2021Updated 4 years ago
- CTF writeups by ./Vespiary☆16Nov 12, 2023Updated 2 years ago
- Offensive toolkit and BloodHound graph creator for DPAPI blobs and master key files☆14Jan 10, 2026Updated last month
- This script allows us to perform an execution in the memory of the device without leaving traces for forensic analysts after its executio…☆12May 12, 2022Updated 3 years ago
- BigDataView-100套大数据HTML模板☆11May 20, 2022Updated 3 years ago
- Hidden Features Full Hidden Access Hidden Desktop Hidden Browsers Hidden Cmd Clone Profile Hidden PowerShell Hidden Explorer Hidde…☆18Sep 30, 2022Updated 3 years ago
- Clr Injection for x64 and x86. Inject C# into Managed or Unmanaged Processes.☆18Sep 7, 2024Updated last year
- ☆21Jan 8, 2026Updated last month
- Zero dependency browser extension for handling import of cookies, Microsoft 365 OAuth tokens, and Graph API interactions.☆23Dec 31, 2025Updated last month
- Website vuln example.☆11Sep 26, 2025Updated 5 months ago
- A collection of 42 students' Core War Champions for AI training purposes☆10Mar 20, 2020Updated 5 years ago
- Malware development in Go, learn today, anti dynamic analysis & Static & sandboxes.☆15Apr 21, 2025Updated 10 months ago
- A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.☆10Aug 2, 2021Updated 4 years ago
- PhantomDelay is a precise delay function that uses the Windows high resolution performance counter to pause your program for a specified …☆19May 8, 2025Updated 9 months ago