Three different shellcode techniques on the Windows Kernel
☆15Apr 8, 2025Updated 10 months ago
Alternatives and similar repositories for Windows-Kernel-Shellcode
Users that are interested in Windows-Kernel-Shellcode are comparing it to the libraries listed below
Sorting:
- kASLR bypass technique on Intel CPUs.☆32May 18, 2025Updated 9 months ago
- Repository to gather the BOF files I will be developing☆11Oct 1, 2024Updated last year
- C# API for Nidhogg rootkit☆21Apr 25, 2024Updated last year
- IAT-Obfuscation to make static analysis of executable harder.☆44Sep 6, 2021Updated 4 years ago
- partially disable patchguard up to win11 21H2☆19Jun 3, 2024Updated last year
- ☆18Jan 14, 2026Updated last month
- Load Encrypted Dll Using LoadLibraryA, Keep The Dll Encrypted on disc all the time and decrypt it only in memory.☆23Sep 5, 2021Updated 4 years ago
- Bypass UAC elevation on Windows 8 (build 9600) & above.☆57Feb 2, 2026Updated 3 weeks ago
- Remote code execution in Power Platform connectors via JSON deserialization☆23Mar 30, 2023Updated 2 years ago
- ACTIVELabs Security Advisories☆24May 19, 2021Updated 4 years ago
- Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.☆54Jun 2, 2025Updated 8 months ago
- Remotely dump NT hashes through Windows Crash dumps☆34Oct 29, 2024Updated last year
- A Dynamic MSBuild task to help with minor obfuscation of C# Binaries to evade static signatures on each compilation☆38Dec 7, 2025Updated 2 months ago
- Launch your SOC as fast as a rocket with only one command☆12Feb 17, 2025Updated last year
- Leaking kernel addresses from ETW consumers. Requires Administrator privileges.☆91Nov 6, 2025Updated 3 months ago
- Library for using direct system calls☆36Jan 30, 2025Updated last year
- C/C++ Windows Process Injector for Educational Purposes.☆10Apr 2, 2021Updated 4 years ago
- C++ Code☆11Aug 13, 2019Updated 6 years ago
- hijacks the discord overlay and draws imgui inside of it while remaining flagless due to the discord overlay devs being retarded☆18Apr 29, 2025Updated 9 months ago
- 无Windows API的新型恶意程序:自缺陷程序利用堆栈溢出的隐匿稳定攻击技术研究,A new type of malicious program without Windows API☆88Mar 27, 2025Updated 11 months ago
- CVE-2022-26135☆11Jul 12, 2022Updated 3 years ago
- Zabbix CVE-2024-42327 PoC☆46Jan 3, 2025Updated last year
- A rewrite of Open Hexagon☆12Updated this week
- WinDbg plugin to trace module transitions from a debugged driver.☆40Dec 22, 2025Updated 2 months ago
- websocket-protocol's implementation with multithread synchronization model in C++☆17Jul 23, 2017Updated 8 years ago
- 鉴穹日志安全分析系统☆18Sep 7, 2025Updated 5 months ago
- Python Shellcode 免杀加载器 支持图形化定制开发✌☆10Oct 23, 2022Updated 3 years ago
- remem is a C++ library designed for memory manipulation, function calling, and pattern scanning. It supports various calling conventions,…☆10Aug 23, 2024Updated last year
- Tools for diffing and comparing web content. Also includes a web server that makes diffs available as an HTTP service.☆15Feb 20, 2026Updated last week
- Build WSA Kernel with Docker☆17Oct 26, 2021Updated 4 years ago
- C++23 header-only web UI library☆19Nov 23, 2025Updated 3 months ago
- Generate Go bindings for shared C libraries.☆15Jul 13, 2024Updated last year
- netease python2 inject hook☆13Jan 8, 2025Updated last year
- ☆10Apr 23, 2024Updated last year
- An UWP Client for e-hentai.org☆10May 22, 2018Updated 7 years ago
- A wrapper around Windows, calls explicitly the lowest possible calls☆14Jan 19, 2023Updated 3 years ago
- Cobalt Strike Malleable Profile Inline Patch Template: A Position Independent Code (PIC) Code Template For Creating Shellcode That Can Be…☆42Sep 3, 2020Updated 5 years ago
- PoC for CVE-2019-0888 - Use-After-Free in Windows ActiveX Data Objects (ADO)☆40Jul 9, 2019Updated 6 years ago
- PoC for CVE-2025-0282: A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Ivanti Policy Secure, and Iv…☆49Jan 16, 2025Updated last year