DSE bypass using a leaked cert and adjusting the current clock.
☆158Oct 3, 2025Updated 5 months ago
Alternatives and similar repositories for PastDSE
Users that are interested in PastDSE are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 一些使用过期或者注销证书的技术☆307May 24, 2019Updated 6 years ago
- Load your driver like win32k.sys☆258Aug 20, 2022Updated 3 years ago
- usermode driver mapper that forcefully loads any signed kernel driver (legit cert) with a big enough section (example: .data, .rdata) to …☆475Jan 3, 2022Updated 4 years ago
- detect hypervisor with Nmi Callback☆42Sep 25, 2022Updated 3 years ago
- Windows Kernel nt files - To research windows kernel☆15Jul 23, 2020Updated 5 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆393Jul 6, 2022Updated 3 years ago
- Kernel driver loader using vulnerable gigabyte driver (https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vu…☆277Oct 2, 2021Updated 4 years ago
- ☆309May 11, 2023Updated 2 years ago
- Bypassing PatchGuard on modern x64 systems☆265Apr 9, 2023Updated 2 years ago
- Kernel DLL Injector using NX Bit Swapping and VAD hide for hiding injected DLL☆219Nov 12, 2020Updated 5 years ago
- manually map driver for a signed driver memory space☆177Mar 11, 2021Updated 5 years ago
- Loads a signed kernel driver which allows you to map any driver to kernel mode without any traces of the signed / mapped driver.☆389Aug 8, 2021Updated 4 years ago
- Use RTCore64 to map your driver on windows 11.☆156May 9, 2025Updated 10 months ago
- Turn off PatchGuard in real time for win7 (7600) ~ later☆1,038Apr 21, 2022Updated 3 years ago
- just proof of concept. hooking MmCopyMemory PG safe.☆84Nov 13, 2023Updated 2 years ago
- The Kernel-Mode Winsock library, supporting TCP, UDP and Unix sockets (DGRAM and STREAM).☆289Jan 27, 2025Updated last year
- A mapper that maps shellcode into loaded large page drivers☆329Apr 26, 2022Updated 3 years ago
- ☆111Nov 13, 2023Updated 2 years ago
- ☆143Dec 10, 2022Updated 3 years ago
- the basic version of the ring0 physical memory read/write tool☆92Aug 18, 2019Updated 6 years ago
- InfinityHookPro Win7 -> Win11 latest☆553Feb 7, 2023Updated 3 years ago
- Disable PatchGuard and Driver Signature Enforcement at boot time☆2,338Aug 3, 2025Updated 7 months ago
- Unsigned driver loader using CVE-2018-19320☆346Mar 16, 2026Updated last week
- 基于WFP的小型网络过滤驱动,拦截百度的DNS,感谢公司前辈们的思路与指导。☆14Aug 19, 2021Updated 4 years ago
- For when DLLMain is the only way☆424Oct 29, 2024Updated last year
- Detours with just single dependency - NTDLL☆674Nov 25, 2025Updated 4 months ago
- Abusing nvidia driver (nvoclock.sys) for physical/virtual memory and control register manipulation.☆280Mar 16, 2026Updated last week
- System call hook for Windows 10 20H1☆495Jun 26, 2021Updated 4 years ago
- load unsigned kernel-driver by patching dse in 248 lines☆146Mar 22, 2024Updated 2 years ago
- Using CVE-2023-21768 to manual map kernel mode driver☆197Mar 10, 2023Updated 3 years ago
- fix vmprotect import function used unicorn-engine.☆99Apr 4, 2023Updated 2 years ago
- Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.☆905Nov 21, 2019Updated 6 years ago
- Collection of undocumented Windows API declarations.☆344Mar 11, 2026Updated last week
- codes for my blog post: https://secrary.com/Random/InstrumentationCallback/☆182Nov 30, 2017Updated 8 years ago
- KDP compatible unsigned driver loader leveraging a write primitive in one of the IOCTLs of gdrv.sys☆166Jun 14, 2024Updated last year
- Static user/kernel mode library that allows access to all functions and global variables by extracting offsets from the PDB☆118May 29, 2025Updated 9 months ago
- CVE-2022-3699 with arbitrary kernel code execution capability☆70Dec 27, 2022Updated 3 years ago
- it's a driver injector or driver loader header lib(Windows)☆12Aug 5, 2023Updated 2 years ago
- A kernel mode Windows rootkit in development.☆49Dec 31, 2021Updated 4 years ago