connormcgarr / Kernel-Exploits
Kernel Exploits
☆251Updated 3 years ago
Alternatives and similar repositories for Kernel-Exploits:
Users that are interested in Kernel-Exploits are comparing it to the libraries listed below
- Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)☆220Updated last year
- Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…☆225Updated 2 years ago
- ☆159Updated 3 years ago
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆225Updated 2 years ago
- Exploit for CVE-2021-40449 - Win32k Elevation of Privilege Vulnerability (LPE)☆468Updated 3 years ago
- Yet another variant of Process Hollowing☆386Updated 2 months ago
- A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.☆174Updated 4 months ago
- Some of my windows kernel exploits for learning purposes☆122Updated 2 years ago
- GhostWriting Injection Technique.☆170Updated 7 years ago
- Static Binary Instrumentation tool for Windows x64 executables☆200Updated last week
- Phantom DLL hollowing PoC☆358Updated 2 years ago
- Unofficial Common Log File System (CLFS) Documentation☆176Updated 3 years ago
- FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!☆328Updated 2 years ago
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆203Updated 4 years ago
- Windows LPE exploit for CVE-2022-37969☆133Updated last year
- A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…☆120Updated 2 years ago
- The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).☆227Updated 4 months ago
- NINA: No Injection, No Allocation x64 Process Injection Technique☆202Updated 4 years ago
- WTSRM☆209Updated 2 years ago
- PoC demonstrating the use of cve-2020-1034 for privilege escalation☆123Updated 4 years ago
- Local privilege escalation PoC exploit for CVE-2019-16098☆193Updated 5 years ago
- Code Injection, Inject malicious payload via pagetables pml4.☆234Updated 3 years ago
- Some source code to demonstrate avoiding certain direct syscall detections by locating and JMPing to a legitimate syscall instruction wit…☆213Updated 2 years ago
- HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.☆663Updated last year
- ☆304Updated 3 years ago
- Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.☆178Updated 3 years ago
- OffensivePH - use old Process Hacker driver to bypass several user-mode access controls☆330Updated 3 years ago
- Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows☆207Updated 2 years ago
- Windows System Programming Experiments☆218Updated 2 years ago
- Silence EDRs by removing kernel callbacks☆231Updated 4 years ago