A serie of exploits targeting eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W
☆121Oct 19, 2025Updated 7 months ago
Alternatives and similar repositories for Eneio64-Driver-Exploits
Users that are interested in Eneio64-Driver-Exploits are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- kASLR bypass technique on Intel CPUs.☆34May 18, 2025Updated last year
- Anti-Rootkit/Anti-Cheat Driver to uncover unbacked or hidden kernel code.☆334Mar 12, 2026Updated 3 months ago
- Kernel Level NMI Callback Blocker☆183Apr 23, 2026Updated last month
- WinDbg plugin to trace module transitions from a debugged driver.☆54Dec 22, 2025Updated 5 months ago
- ☆69Apr 20, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- This repo contains EXPs about Vulnerable Windows Driver☆48May 22, 2024Updated 2 years ago
- Sleep obfuscation☆274Dec 13, 2024Updated last year
- Obfusk8: lightweight Obfuscation library based on C++17 / Header Only for windows binaries☆705May 22, 2026Updated 3 weeks ago
- Windows hypervisor for Intel x64: defensive host hypervisor for Windows designed to mitigate kernel-level attacks including BYOVD, compat…☆261May 9, 2026Updated last month
- Windows kernel driver demonstrating kernel-to-usermode communication via shared memory sections☆107Apr 24, 2026Updated last month
- Use XIGNCODE3 driver to cheat☆81May 1, 2026Updated last month
- Call Stack Spoofing for Rust☆214Jan 28, 2026Updated 4 months ago
- UEFI Bootkit Framework that attacks boot-time Code Integrity☆141Mar 15, 2026Updated 3 months ago
- Here you can find some vulnerable Windows Kernel Drivers☆13Feb 21, 2025Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Convert your shellcode into an ASCII string☆128Jun 27, 2025Updated 11 months ago
- Just another .data pointer hook. This time it's hooking AfdIrpCallDispatch within Afd.sys☆12Feb 22, 2022Updated 4 years ago
- Windows x64 DLL/Driver manual map injection on a non-present PML4E using physical memory read/writes, direct page table manipulation and …☆99Sep 28, 2025Updated 8 months ago
- ☆38Sep 26, 2024Updated last year
- Enable or Disable TokenPrivilege(s)☆15May 17, 2024Updated 2 years ago
- A lexer and parser for Sleep☆20Feb 20, 2026Updated 3 months ago
- Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1☆80Sep 8, 2025Updated 9 months ago
- A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…☆32Aug 23, 2023Updated 2 years ago
- ☆29Aug 3, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Proof-of-concept kernel driver that hijacks the Windows kernel extension table mechanism to preserve process notify callbacks even when a…☆97Jul 7, 2025Updated 11 months ago
- find dll base addresses without PEB WALK☆169Jul 13, 2025Updated 11 months ago
- DWM overlay without pattern scanning☆79Updated this week
- Windows 11 kernel research framework demonstrating DSE bypass on Windows 11 25H2 through boot-time execution. Loads unsigned drivers by s…☆222Apr 9, 2026Updated 2 months ago
- ☆25Apr 28, 2024Updated 2 years ago
- ☆51Feb 21, 2022Updated 4 years ago
- 从MmPfnData中枚举进程和页目录基址☆215Aug 18, 2023Updated 2 years ago
- ☆58Mar 14, 2023Updated 3 years ago
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆195Nov 27, 2024Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆285Sep 18, 2024Updated last year
- Executing Kernel Routines via Syscall Table Hijack (Kernel Code Execution)☆73Jun 7, 2026Updated last week
- DWM Overlay without write .text☆131Sep 16, 2024Updated last year
- Waiting Thread Hijacking - injection by overwriting the return address of a waiting thread☆264Aug 31, 2025Updated 9 months ago
- Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution☆44Oct 11, 2025Updated 8 months ago
- ROP-based sleep obfuscation to evade memory scanners☆383Jun 22, 2025Updated 11 months ago
- Help red teams find opsec processes during engagements☆44Dec 7, 2024Updated last year