connormcgarr / Kernel-Exploits
Kernel Exploits
☆251Updated 3 years ago
Alternatives and similar repositories for Kernel-Exploits:
Users that are interested in Kernel-Exploits are comparing it to the libraries listed below
- Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)☆221Updated last year
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆227Updated 2 years ago
- Exploit for CVE-2021-40449 - Win32k Elevation of Privilege Vulnerability (LPE)☆469Updated 3 years ago
- Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…☆227Updated 2 years ago
- ☆159Updated 3 years ago
- Yet another variant of Process Hollowing☆392Updated 3 months ago
- A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.☆176Updated 2 weeks ago
- Static Binary Instrumentation tool for Windows x64 executables☆201Updated this week
- The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).☆229Updated 4 months ago
- Some of my windows kernel exploits for learning purposes☆123Updated 2 years ago
- NINA: No Injection, No Allocation x64 Process Injection Technique☆225Updated 4 years ago
- FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!☆332Updated 2 years ago
- ☆134Updated last month
- Do you want to use x64dbg instead of immunity debugger? oscp eCPPTv2 buffer overflow exploits pocs☆87Updated last year
- Enumerating and removing kernel callbacks using signed vulnerable drivers☆559Updated 2 years ago
- Leaked Windows processes handles identification tool☆287Updated 3 years ago
- Unofficial Common Log File System (CLFS) Documentation☆176Updated 3 years ago
- Code Injection, Inject malicious payload via pagetables pml4.☆237Updated 3 years ago
- Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows☆208Updated 2 years ago
- x64 Assembly HalosGate direct System Caller to evade EDR UserLand hooks☆208Updated 2 years ago
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆206Updated 4 years ago
- A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…☆120Updated 2 years ago
- ☆305Updated 3 years ago
- Phantom DLL hollowing PoC☆360Updated 2 years ago
- Find patterns of vulnerabilities on Windows in order to find 0-day and write exploits of 1-days. We use Microsoft security updates in ord…☆182Updated 3 years ago
- HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.☆668Updated last year
- ☆97Updated 3 years ago
- GhostWriting Injection Technique.☆171Updated 7 years ago
- Lenovo Diagnostics Driver EoP - Arbitrary R/W☆172Updated 2 years ago
- OffensivePH - use old Process Hacker driver to bypass several user-mode access controls☆332Updated 3 years ago