Driver Reverse & Exploitation
☆82Sep 4, 2025Updated 9 months ago
Alternatives and similar repositories for BYOVD-DriverKiller
Users that are interested in BYOVD-DriverKiller are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel☆64Apr 13, 2025Updated last year
- A tool that bypasses Windows Defender by manually loading DLLs, parsing EAT directly, and updating IAT with unhooked functions to run M…☆21Jul 14, 2024Updated last year
- Proof of concept source code and misc files for my CVE-2025-21692 exploit, kernel version 6.6.75☆40Sep 16, 2025Updated 9 months ago
- All my POC related to malware development☆15Feb 19, 2026Updated 3 months ago
- APT Emulation tool to exfiltrate sensitive .docx, .pptx, .xlsx, .pdf files☆100Apr 2, 2025Updated last year
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- ☆26Aug 11, 2025Updated 10 months ago
- AIDA64DRIVER Elevation of Privilege Vulnerability☆17Oct 25, 2024Updated last year
- A Reflective Loader for macOS☆149Jul 20, 2025Updated 10 months ago
- Windows Active DIrectory Pentesting documentation.☆20Jun 14, 2024Updated 2 years ago
- Bypass Userland EDR hooks by Loading Reflective Ntdll in memory from a remote server based on Windows ReleaseID to avoid opening a handle…☆16Jan 7, 2023Updated 3 years ago
- EDR-Redir : a tool used to redirect the EDR's folder to another location.☆238May 23, 2026Updated 3 weeks ago
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆39Feb 20, 2025Updated last year
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆13Feb 4, 2024Updated 2 years ago
- Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.☆287Apr 6, 2025Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Generate Proxy DLLs in Rust☆56May 6, 2026Updated last month
- ☆416Dec 8, 2024Updated last year
- Windows User-Mode Shellcode Development Framework (WUMSDF)☆143Nov 17, 2025Updated 7 months ago
- "Service-less" driver loading☆188Nov 28, 2024Updated last year
- Identifies LOLDrivers that are not blocked by the active HVCI policy — ideal for BYOVD scenarios.☆84Jul 25, 2025Updated 10 months ago
- A bunch of shenanigans using functions, VEH and more☆37Jun 8, 2025Updated last year
- .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…☆48Jul 29, 2024Updated last year
- ☆16Jun 15, 2025Updated last year
- 「⚠️」Performing a BYOVD on the truesight.sys driver☆46Dec 7, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ☆78Aug 1, 2023Updated 2 years ago
- the bear is an infostealer (grabber) malware written in C and assembly with the focus on evading detection.☆18Sep 8, 2024Updated last year
- process hollowing variant using NtCreateSection + NtMapViewOfSection + ResumeThread☆31Jan 9, 2022Updated 4 years ago
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆50Jan 25, 2025Updated last year
- Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …☆102Jan 2, 2026Updated 5 months ago
- Advanced Windows authentication token extraction and decryption tool for red team operations and security research☆98Apr 1, 2026Updated 2 months ago
- easy dll proxying in go☆14Apr 24, 2022Updated 4 years ago
- ☆41Nov 25, 2025Updated 6 months ago
- Exploits written while preparing for the OSED exam☆27Apr 30, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A cross-platform tool to find traces of old SIDs remaining in LDAP objects of the Active Directory☆25Jun 29, 2025Updated 11 months ago
- Bypassing AV, EDR, Application Whitelisting and ASR Rules☆13Apr 18, 2023Updated 3 years ago
- This script is used to unload PsSetCreateProcessNotifyRoutineEx, PsSetCreateProcessNotifyRoutine, PsSetLoadImageNotifyRoutine and PsSetCr…☆63Feb 11, 2024Updated 2 years ago
- 无痕注入1☆11Jun 1, 2021Updated 5 years ago
- A robust Windows Process Executable Packer and Launcher implementation written in Rust for Windows x64 systems.☆47Jan 9, 2025Updated last year
- A C/C++ framework designed to simplify shellcode creation on any compilers and platforms using C. Supports Windows & Linux, and practical…☆23Sep 16, 2024Updated last year
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year