Windows LPE Nday
☆32Apr 26, 2024Updated last year
Alternatives and similar repositories for werkernel
Users that are interested in werkernel are comparing it to the libraries listed below
Sorting:
- ☆42Jun 23, 2024Updated last year
- How to use PiDqSerializationWrite. Introduces how to safely read and write from mapped driver☆26May 29, 2023Updated 2 years ago
- Exploit for CVE-2023-29360 targeting MSKSSRV.SYS driver☆153Oct 12, 2023Updated 2 years ago
- MSI creator for exe setup/installer☆11Jun 27, 2023Updated 2 years ago
- A simple example how to decrypt kernel debugger data block☆32Feb 8, 2021Updated 5 years ago
- ☆26Dec 29, 2021Updated 4 years ago
- NVMe-oF for Windows.☆14Feb 4, 2023Updated 3 years ago
- really ?☆12Feb 29, 2024Updated 2 years ago
- 基于UDP穿越非对称NAT建立P2P网络的Windows实现(UDP打洞)☆13Nov 6, 2019Updated 6 years ago
- A collection of cpuid instruction implementations for anti-vm purposes.☆10Oct 5, 2023Updated 2 years ago
- Exploit targeting NT kernel in 24H2 Windows Insider Preview☆151Apr 26, 2024Updated last year
- Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation☆130Mar 22, 2024Updated last year
- Windows x64 kernel mode rootkit process hollowing POC.☆189Jun 30, 2023Updated 2 years ago
- ☆193Jul 29, 2024Updated last year
- A command and control framework.☆54Dec 26, 2024Updated last year
- Windows LPE☆140Jun 11, 2024Updated last year
- Python interface for Binexport, the Bindiff export format☆20Updated this week
- ☆13Jan 12, 2022Updated 4 years ago
- Export IDA microcode to BinExport format so that you can use BinDiff to diff microcodes☆12Sep 21, 2024Updated last year
- This repository contains multiple exploits I have written for various CVEs and CTFs☆28Jul 27, 2025Updated 7 months ago
- Windows AppLocker Driver (appid.sys) LPE☆74Jul 29, 2024Updated last year
- 该漏洞存在于 NtQueryInformationToken 函数中,特别是在处理AuthzBasepCopyoutInternalSecurityAttributes 函数时,该漏洞源于内核在操作对象时对锁定机制的不当管理,这一失误可能导致恶意实体意外提升权限。☆40Jul 5, 2024Updated last year
- ☆21Jan 15, 2025Updated last year
- ☆17Apr 21, 2022Updated 3 years ago
- Reports and POCs for CVE 2024-43570 and CVE-2024-43535☆29Jun 7, 2025Updated 8 months ago
- ☆19Oct 12, 2024Updated last year
- C library that is intended for providing methods for executing and injecting code.☆17Aug 14, 2024Updated last year
- Information Flow Analysis for C#. Understand What Your Code Really Does☆42Nov 11, 2025Updated 3 months ago
- ☆17Oct 31, 2022Updated 3 years ago
- ☆16Jun 23, 2024Updated last year
- 2022 Updated Kernelmode-Code☆33Mar 23, 2024Updated last year
- ☆86Mar 2, 2025Updated 11 months ago
- A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial☆16Jun 22, 2019Updated 6 years ago
- 参考taviso的代码逆向一下mpengine.dll☆20Jun 30, 2022Updated 3 years ago
- DSE & PG bypass via BYOVD attack☆76Jul 12, 2025Updated 7 months ago
- Executes Read/Write process memory with `NtQueryCompositionSurfaceStatistics`☆23Feb 10, 2024Updated 2 years ago
- Logging library for kernel drivers written for the Windows NT operating system.☆21Oct 17, 2025Updated 4 months ago
- windows kernel pagehook☆41Oct 30, 2022Updated 3 years ago
- 基于API HOOK的软件行为分析系统☆18Oct 10, 2021Updated 4 years ago