Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.
☆54Jun 2, 2025Updated 8 months ago
Alternatives and similar repositories for windows_kernel_shadow_stack
Users that are interested in windows_kernel_shadow_stack are comparing it to the libraries listed below
Sorting:
- Callstack spoofing using a VEH because VEH all the things.☆23Mar 18, 2025Updated 11 months ago
- kASLR bypass technique on Intel CPUs.☆32May 18, 2025Updated 9 months ago
- A lightweight test harness designed to speed up shellcode development by providing an execution environment with integrated crash diagnos…☆43Jan 15, 2026Updated last month
- A collection of sample code used in some experiments with Sliver C2☆16Mar 28, 2023Updated 2 years ago
- Mentally ill EtwTi parser☆68Jan 11, 2026Updated last month
- various methods of making API calls☆19Feb 1, 2025Updated last year
- Finding Truth in the Shadows☆123Jan 26, 2023Updated 3 years ago
- Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does☆95Jul 3, 2025Updated 7 months ago
- Power Automate C2 (PAC2) : Stealth living-off-the-cloud C2 framework.☆36Apr 16, 2024Updated last year
- Internal Monologue BOF☆79Dec 28, 2024Updated last year
- An ICMP channel for Beacons, implemented using Cobalt Strike’s External C2 framework.☆115Oct 6, 2025Updated 4 months ago
- Self-cleaning in-memory PICO loader for Crystal Palace. Automatically erases traces and operates entirely in memory for stealthy payload …☆48Nov 2, 2025Updated 3 months ago
- A Beacon Object File (BOF) for Havoc/CS to Bypass PPL and Dump Lsass☆167Sep 22, 2025Updated 5 months ago
- Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…☆66Dec 29, 2023Updated 2 years ago
- ☆26Aug 5, 2025Updated 6 months ago
- A POC for developing BOFs for Sliver, Havoc, Cobalt Strike or most COFFLoaders in Rust.☆74Aug 24, 2025Updated 6 months ago
- A collection of position independent coding resources☆107Nov 15, 2025Updated 3 months ago
- Simple C# Redirector☆94Aug 31, 2025Updated 5 months ago
- A set of LLVM and GCC based plugins that perform code obfuscation.☆139Oct 20, 2025Updated 4 months ago
- Generate Go bindings for shared C libraries.☆15Jul 13, 2024Updated last year
- Generate a PDB file given the old PDB file and an address mapping☆52Aug 3, 2025Updated 6 months ago
- WinDbg plugin to trace module transitions from a debugged driver.☆40Dec 22, 2025Updated 2 months ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 10 months ago
- A Windows PE loader / manual mapper for executables (x86 and x64) with full TLS (Thread Local Storage) support.☆86Oct 27, 2025Updated 4 months ago
- A simple Sleepmask BOF example☆167Nov 24, 2025Updated 3 months ago
- ☆50May 4, 2025Updated 9 months ago
- ☆164Jun 12, 2025Updated 8 months ago
- ☆53Mar 26, 2025Updated 11 months ago
- Three different shellcode techniques on the Windows Kernel☆15Apr 8, 2025Updated 10 months ago
- A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread☆30Sep 24, 2025Updated 5 months ago
- Leveraging TPM2 TCG Logs (Measured Boot) to Detect UEFI Drivers and Pre-Boot Applications☆22Mar 28, 2025Updated 10 months ago
- ☆11Dec 8, 2023Updated 2 years ago
- ☆11Jun 24, 2024Updated last year
- MouHidInputHook enables users to filter, modify, and inject mouse input data packets into the input data stream of HID USB mouse devices …☆11Jul 11, 2019Updated 6 years ago
- Port of Cobalt Strike's Process Inject Kit☆190Dec 1, 2024Updated last year
- ☆26Dec 29, 2021Updated 4 years ago
- Prevent in-process process termination by patching exit APIs☆63Nov 9, 2025Updated 3 months ago
- NovaHypervisor is a defensive x64 Intel host based hypervisor. The goal of this project is to protect against kernel based attacks (eithe…☆252Feb 19, 2026Updated last week
- GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.☆11Nov 24, 2023Updated 2 years ago