Weaponizing Gigabyte driver for priv escalation and bypass PPL
☆70Jun 30, 2019Updated 6 years ago
Alternatives and similar repositories for DanSpecial
Users that are interested in DanSpecial are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- XPN's RpcEnum but based on IDA instead of Ghidra☆21Aug 17, 2019Updated 6 years ago
- x86/x64 dll injector☆31May 17, 2022Updated 4 years ago
- A simple kernel mode driver that hooks some values at the KUSER_SHARED_DATA structure.☆26Jan 7, 2020Updated 6 years ago
- A POC for Windows Extension Host hooking☆24Jul 13, 2019Updated 6 years ago
- "Screwed Drivers" centralized information source for code references, links, etc.☆377Mar 19, 2020Updated 6 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Shellcode injection using debugging APIs☆19Jan 13, 2014Updated 12 years ago
- Process reimaging proof of concept code☆97Jun 21, 2019Updated 6 years ago
- exploit termdd.sys(support kb4499175)☆61Jul 15, 2019Updated 6 years ago
- Monitor ETW events for Windows process mitigation policies, with stack traces☆30Oct 7, 2022Updated 3 years ago
- ☆10Aug 16, 2019Updated 6 years ago
- https://key08.com/index.php/2021/10/19/1375.html☆71May 11, 2022Updated 4 years ago
- Communication via callback☆73Oct 9, 2019Updated 6 years ago
- c++ implementation of windows heavens gate☆70Feb 12, 2021Updated 5 years ago
- Microsoft decompiled IrDA drivers☆16Apr 15, 2015Updated 11 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A driver that hooks C: volume using symbolic link callback to track all FS access to the volume☆108Apr 24, 2020Updated 6 years ago
- Hooking kernel functions by abusing alignment☆249Jan 5, 2021Updated 5 years ago
- Tools made for my Hyper-V blog series @ https://foxhex0ne.blogspot.com/☆57Jun 21, 2020Updated 5 years ago
- Undocumented NsiAllocateAndGetTable usage in GetTcpTableInternal reverse engineered on Win7 X64☆22Apr 7, 2018Updated 8 years ago
- JXA script for Mythic that prints the TCC.db☆15Apr 18, 2021Updated 5 years ago
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆55Jul 8, 2022Updated 3 years ago
- A collection of various vulnerable (mostly physical memory exposing) drivers.☆466Jun 15, 2022Updated 3 years ago
- Reverse engineered source code of the autochk rootkit☆212Nov 1, 2019Updated 6 years ago
- Hide codes/data in the kernel address space.☆188May 8, 2021Updated 5 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- pass game protect☆11Apr 26, 2014Updated 12 years ago
- ☆31Jul 27, 2020Updated 5 years ago
- win10 pgContext dynamic dump (btc version)☆112Jan 15, 2020Updated 6 years ago
- Analyze Windows x64 Kernel Memory Layout☆131Nov 19, 2020Updated 5 years ago
- ☆18Aug 19, 2021Updated 4 years ago
- C++ Code+Data Obfuscation Library with Build-Time Polymorphism☆110Mar 8, 2018Updated 8 years ago
- Quarantine bypass and RCE vulnerability in Sketch (proof-of-concept)☆12Nov 22, 2021Updated 4 years ago
- A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.☆38Mar 16, 2022Updated 4 years ago
- Enumerating and removing kernel callbacks using signed vulnerable drivers☆594Jan 24, 2023Updated 3 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Adaptive DLL hijacking / dynamic export forwarding☆819Jul 6, 2020Updated 5 years ago
- Documentation and supporting script sample for Windows Exploit Guard☆168Sep 8, 2025Updated 8 months ago
- A simple example how to decrypt kernel debugger data block☆32Feb 8, 2021Updated 5 years ago
- Example of hijacking system calls via function pointer tables☆31Jun 26, 2021Updated 4 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆33Nov 14, 2020Updated 5 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆103May 14, 2020Updated 6 years ago
- Using fibers to execute shellcode in a local process via csharp☆27Jan 2, 2022Updated 4 years ago