Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.
☆66Jun 2, 2025Updated last year
Alternatives and similar repositories for windows_kernel_shadow_stack
Users that are interested in windows_kernel_shadow_stack are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- kASLR bypass technique on Intel CPUs.☆34May 18, 2025Updated last year
- A simple POC to show how to chain multiple callbacks via tail calls to artificially construct a call stack☆108May 25, 2026Updated last month
- A lightweight test harness designed to speed up shellcode development by providing an execution environment with integrated crash diagnos…☆46Jan 15, 2026Updated 5 months ago
- A collection of sample code used in some experiments with Sliver C2☆17Mar 28, 2023Updated 3 years ago
- Finding Truth in the Shadows☆129Jan 26, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Havoc C2 BOF port of the KslD.sys BYOVD technique. Credential extraction from lsass via physical memory — no OpenProcess, no auditable AP…☆111Apr 22, 2026Updated 2 months ago
- Mentally ill EtwTi parser☆74Jan 11, 2026Updated 5 months ago
- various methods of making API calls☆19Feb 1, 2025Updated last year
- Internal Monologue BOF☆79Dec 28, 2024Updated last year
- Callstack spoofing using a VEH because VEH all the things.☆24Mar 18, 2025Updated last year
- Translate virtual addresses to physical addresses from usermode.☆135Jun 7, 2024Updated 2 years ago
- A C#-implemented malware that dynamically modifies its own hash upon each execution to evade detection.☆17Feb 3, 2025Updated last year
- Power Automate C2 (PAC2) : Stealth living-off-the-cloud C2 framework.☆38Apr 16, 2024Updated 2 years ago
- A Beacon Object File (BOF) for Havoc/CS to Bypass PPL and Dump Lsass☆171Sep 22, 2025Updated 9 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated last year
- Generate Go bindings for shared C libraries.☆20May 20, 2026Updated last month
- ☆52May 4, 2025Updated last year
- ☆14Mar 24, 2026Updated 3 months ago
- An ICMP channel for Beacons, implemented using Cobalt Strike’s External C2 framework.☆122Oct 6, 2025Updated 8 months ago
- MouHidInputHook enables users to filter, modify, and inject mouse input data packets into the input data stream of HID USB mouse devices …☆11Jul 11, 2019Updated 6 years ago
- A POC for developing BOFs for Sliver, Havoc, Cobalt Strike or most COFFLoaders in Rust.☆76Aug 24, 2025Updated 10 months ago
- ☆30Jun 1, 2026Updated 3 weeks ago
- Simple C# Redirector☆95Aug 31, 2025Updated 9 months ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Shellcode Loader Utilizing ETW Events☆66Feb 26, 2025Updated last year
- Port of Cobalt Strike's Process Inject Kit☆194Dec 1, 2024Updated last year
- ☆11Dec 8, 2023Updated 2 years ago
- Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does☆96Jul 3, 2025Updated 11 months ago
- Beacon Object File (BOF) for Windows Session Hijacking via IHxHelpPaneServer COM☆71Dec 25, 2025Updated 6 months ago
- ☆164Jun 12, 2025Updated last year
- PIC shellcode (C/C++) development toolkit designed for malware developers.☆127Dec 23, 2025Updated 6 months ago
- A simple Sleepmask BOF example☆176Nov 24, 2025Updated 7 months ago
- Three different shellcode techniques on the Windows Kernel☆17Apr 8, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆140Nov 17, 2025Updated 7 months ago
- Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…☆67Dec 29, 2023Updated 2 years ago
- Generate a PDB file given the old PDB file and an address mapping☆55Aug 3, 2025Updated 10 months ago
- A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread☆33Sep 24, 2025Updated 9 months ago
- Demonstrates consuming from a SecurityTrace ETW session by consuming from the Threat-Intelligence ETW provider without a driver or PPL pr…☆79Jan 19, 2026Updated 5 months ago
- A collection of position independent coding resources☆122Nov 15, 2025Updated 7 months ago
- A work in progress BOF/COFF loader in Rust☆50Mar 22, 2023Updated 3 years ago