kASLR bypass technique on Intel CPUs.
☆32May 18, 2025Updated 10 months ago
Alternatives and similar repositories for MunIntel
Users that are interested in MunIntel are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Three different shellcode techniques on the Windows Kernel☆15Apr 8, 2025Updated 11 months ago
- Pattern-based AMSI bypass that patches AMSI.dll in memory by modifying comparison values, conditional jumps, and function prologues to ne…☆28May 13, 2025Updated 10 months ago
- Windows Kernel Security: Memory Integrity Verification with Disk Verification of ntoskrnl.exe☆27Mar 23, 2025Updated last year
- 对Windbg以Exdi模式下调试windows做一些修复☆21Aug 25, 2023Updated 2 years ago
- A serie of exploits targeting eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W☆120Oct 19, 2025Updated 5 months ago
- Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.☆55Jun 2, 2025Updated 9 months ago
- A 64 bit executable junk code engine for polymorphic malware.☆77Jun 16, 2025Updated 9 months ago
- Bypasses VMProtect's VMWare & VMWare Tools detection trough user-mode API hooks.☆25Aug 3, 2024Updated last year
- Bypasses AMSI protection through remote memory patching and parsing technique.☆55May 12, 2025Updated 10 months ago
- Loads NTDLL, parses the PE file, extracts "Zw" functions, retrieves their System Service Numbers (SSNs), and prints each function’s name,…☆15Apr 21, 2025Updated 11 months ago
- Fluently detect security measures in software.☆32Oct 26, 2025Updated 4 months ago
- ☆21Jan 8, 2026Updated 2 months ago
- A Windows 11 Rootkit. (Exploit has been patched)☆16Sep 7, 2025Updated 6 months ago
- ☆18Jan 11, 2026Updated 2 months ago
- Here you can find some vulnerable Windows Kernel Drivers☆13Feb 21, 2025Updated last year
- KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulatio…☆188Feb 26, 2026Updated 3 weeks ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆21Jan 1, 2025Updated last year
- PhantomDelay is a precise delay function that uses the Windows high resolution performance counter to pause your program for a specified …☆19May 8, 2025Updated 10 months ago
- Whenever PowerShell is launched, Notepad will also open. You can customize the script for educational purposes, but I emphasize that I do…☆12Apr 21, 2025Updated 11 months ago
- A Kernel Driver that can be used for a cheat or malware base to circumvent common cache & structure table checks. PsLoadedModuleList howe…☆205Sep 27, 2025Updated 5 months ago
- x64dbg plugin for cleaning Themida Mutation Assembly codes.☆18May 14, 2025Updated 10 months ago
- Generate Go bindings for shared C libraries.☆16Jul 13, 2024Updated last year
- Hijacking Hyper-V at Runtime with DDMA☆92Aug 13, 2025Updated 7 months ago
- Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution☆44Oct 11, 2025Updated 5 months ago
- Windows 11 kernel research framework demonstrating DSE bypass on Windows 11 25H2 through boot-time execution. Loads unsigned drivers by s…☆97Dec 22, 2025Updated 3 months ago
- Windows hypervisor for Intel x64: defensive host hypervisor for Windows designed to mitigate kernel-level attacks including BYOVD, compat…☆256Mar 15, 2026Updated last week
- Simple single file header for creating zero imports drivers. Can be useful for bypassing forensic memory analysis performed by anticheats…☆19Jun 10, 2025Updated 9 months ago
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆26Apr 21, 2025Updated 11 months ago
- How to use PiDqSerializationWrite. Introduces how to safely read and write from mapped driver☆26May 29, 2023Updated 2 years ago
- Misery Loader to bypass modern EDR solutions☆18Dec 20, 2024Updated last year
- An av windows engine with file guard and compress file enumator☆12Aug 25, 2018Updated 7 years ago
- 🛡️ Open-source binary protection toolkit for Windows PE. Nanomite, VM protection, anti-debug, and more.☆58Feb 8, 2026Updated last month
- Kernel Level NMI Callback Blocker☆168Sep 27, 2025Updated 5 months ago
- Abusing DDMA alongside Copy On Write for Cross Process Code Execution for a 3000$ Bug Bounty☆91Feb 1, 2026Updated last month
- Control Flow Linearization☆25May 4, 2025Updated 10 months ago
- LummaC2 extracted binaries by reversing & LummaC2 Stealer Analysis☆113Feb 18, 2025Updated last year
- ATL.dll and WmiMgmt.msc UAC Bypass☆12Apr 26, 2025Updated 10 months ago
- ☆137Mar 13, 2026Updated last week
- 巨硬☆17Oct 4, 2023Updated 2 years ago