Resolve offsets, gadgets and symbols from NTKernel
☆60Jan 15, 2026Updated 3 months ago
Alternatives and similar repositories for ntoskrnlwalker
Users that are interested in ntoskrnlwalker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A simple C++ driver base with KD data block☆11Jun 25, 2022Updated 3 years ago
- Small driver that uses alternative syscalls feature☆18May 9, 2024Updated last year
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆55Dec 30, 2025Updated 3 months ago
- Windows 11 kernel research framework demonstrating DSE bypass on Windows 11 25H2 through boot-time execution. Loads unsigned drivers by s…☆102Apr 9, 2026Updated last week
- FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…☆43Apr 6, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Havoc C2 BOF port of the KslD.sys BYOVD technique. Credential extraction from lsass via physical memory — no OpenProcess, no auditable AP…☆87Apr 1, 2026Updated 2 weeks ago
- ☆59Feb 19, 2026Updated last month
- A tool for patching/injecting code into elf binaries.☆15Sep 27, 2012Updated 13 years ago
- driver that communicates using a shared section☆99Mar 17, 2025Updated last year
- Executing Kernel Routines via Syscall Table Hijack (Kernel Code Execution)☆60Jun 15, 2025Updated 10 months ago
- The Router Exploitation Framework☆12Nov 10, 2017Updated 8 years ago
- Hosts EDitor, it will add/update/delete host entries for you☆13Mar 14, 2024Updated 2 years ago
- RGFuzz: Rule-Guided Fuzzer for WebAssembly Runtimes☆23Jan 10, 2026Updated 3 months ago
- Threadless Injection Payload Toolkit☆12Oct 12, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆11Mar 28, 2021Updated 5 years ago
- "Bypassing" HVCI via donor PFN swaps to modify read-only code pages. Call chained kernel functions (kCET and SLAT support), and more.☆112Mar 16, 2026Updated last month
- Slide of my conference presentations☆14Sep 5, 2024Updated last year
- vm_str.hpp is a header only string obfuscator.☆112Aug 24, 2025Updated 7 months ago
- Find zero-days while you sleep. DeepZero is an automated vulnerability research framework that parses, decompiles, and analyzes thousands…☆68Updated this week
- IDA loader for Apple SecureROM☆13Sep 29, 2019Updated 6 years ago
- A tiny CRC32/64 library for C/C++☆12Aug 16, 2019Updated 6 years ago
- An av windows engine with file guard and compress file enumator☆12Aug 25, 2018Updated 7 years ago
- Spoof the return address of any function call.☆11Jul 21, 2024Updated last year
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- WinDbg plugin to trace module transitions from a debugged driver.☆51Dec 22, 2025Updated 3 months ago
- A minimal ARM ELF binary to listen on TCP port 4444 and dump the contents to standard output☆16May 7, 2020Updated 5 years ago
- ☆18Jan 11, 2026Updated 3 months ago
- Phantom DLL Hollowing method implemented in modmap☆18Jun 9, 2021Updated 4 years ago
- ☆43Apr 18, 2023Updated 2 years ago
- Eset-Unload is a C++ tool that interacts with a process's loaded modules to identify and unload the ebehmoni.dll module, typically found …☆12Apr 21, 2025Updated 11 months ago
- Adaptix C2 agent using Crystal Palace PIC linker and PICO module system☆73Mar 7, 2026Updated last month
- ☆17Nov 6, 2023Updated 2 years ago
- Unmangles mangled C++/Delphi names☆16Nov 18, 2013Updated 12 years ago
- Deploy open-source AI quickly and easily - Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- ☆13Apr 1, 2017Updated 9 years ago
- Library of BOFs to interact with SQL servers☆16Dec 6, 2024Updated last year
- Windows Kernel Rootkit☆63Nov 24, 2025Updated 4 months ago
- This repo contains PoCs for vulnerable Windows drivers.☆142Dec 20, 2025Updated 3 months ago
- Fluently detect security measures in software.☆32Oct 26, 2025Updated 5 months ago
- 🔬 IDA plugin to find patched memory☆88Apr 1, 2026Updated 2 weeks ago
- A directory of cheat sheets to use with TLDR, cheat.sh, or Navi☆22Jan 14, 2025Updated last year