Windows 11 kernel research framework demonstrating DSE bypass on Windows 11 25H2 through boot-time execution. Loads unsigned drivers by surgically patching SeCiCallbacks via native subsystem. Includes anti-loop protection and dual-path architecture. Windows 11 25H2 driver signature enforcement bypass
☆121Apr 9, 2026Updated last month
Alternatives and similar repositories for KernelResearchKit
Users that are interested in KernelResearchKit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 🔬 IDA plugin to find patched memory☆89Apr 1, 2026Updated last month
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆56Dec 30, 2025Updated 4 months ago
- Implementing Ghostly-Hollowing using tampered syscalls for remote PE injection☆75Dec 26, 2025Updated 4 months ago
- vm_str.hpp is a header only string obfuscator.☆113Aug 24, 2025Updated 8 months ago
- kASLR bypass technique on Intel CPUs.☆34May 18, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆107Feb 25, 2025Updated last year
- ☆100Oct 25, 2025Updated 6 months ago
- LibWinHttp is a simplified WinHTTP wrapper designed as a Crystal Palace shared library for implant development. Its primary purpose is to…☆45Nov 4, 2025Updated 6 months ago
- Advanced PoC & Research for CVE-2026-0828 (Safetica) and CVE-2025-7771 (ThrottleStop). Analysis of BYOVD (Bring Your Own Vulnerable Drive…☆40Feb 4, 2026Updated 3 months ago
- A serie of exploits targeting eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W☆124Oct 19, 2025Updated 7 months ago
- Shellcode capable of bypassing EAF / IAF mitigations☆28Apr 11, 2023Updated 3 years ago
- sigreturn-oriented(SROP) based sleep obfuscation poc for Linux☆69Dec 15, 2025Updated 5 months ago
- KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulatio…☆243May 6, 2026Updated 2 weeks ago
- Monitor Kernel pool allocations tags☆77Nov 2, 2023Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Automatic vtable detection, inheritance analysis, and function override tracking for reverse engineering compiled C++ binaries. Supports …☆130Mar 13, 2026Updated 2 months ago
- Hotkey-based keylogger for Windows☆33Oct 17, 2024Updated last year
- Windows kernel driver that detects hypervisors by probing SIDT/LIDT edge cases, paging/TLB behaviors, privilege transitions, and timing e…☆45Mar 3, 2026Updated 2 months ago
- Abusing DDMA alongside Copy On Write for Cross Process Code Execution for a 3000$ Bug Bounty☆99Feb 1, 2026Updated 3 months ago
- ☆72Apr 24, 2026Updated 3 weeks ago
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆63Oct 19, 2024Updated last year
- 巨硬☆17Oct 4, 2023Updated 2 years ago
- Control Flow Linearization☆25May 4, 2025Updated last year
- Anti-Rootkit/Anti-Cheat Driver to uncover unbacked or hidden kernel code.☆326Mar 12, 2026Updated 2 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1☆80Sep 8, 2025Updated 8 months ago
- Selective In-Memory Syscall Unhooking, a stealthy method to bypass user-mode hooks in ntdll.dll☆40Mar 11, 2026Updated 2 months ago
- ☆18Jan 11, 2026Updated 4 months ago
- nmi stackwalking + module verification☆169Dec 28, 2023Updated 2 years ago
- Structor is a Hex-Rays plugin that synthesizes C structures from raw pointer arithmetic.☆80Apr 28, 2026Updated 3 weeks ago
- Very easy to use pdb parsing library with only one header file,You can use it even if you are a fool.☆12Feb 12, 2026Updated 3 months ago
- Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…☆19Apr 24, 2023Updated 3 years ago
- Demonstrating 3 persistence layers from a single EXE, that converts itself into proxy DLLs at runtime☆91Mar 29, 2026Updated last month
- A small set of Beacon Object Files (BOFs) that I developed over the time with a Magic: The Gathering theme.☆21Jul 15, 2025Updated 10 months ago
- Deploy open-source AI quickly and easily - Special Bonus Offer �• AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- ☆59Feb 19, 2026Updated 3 months ago
- Use XIGNCODE3 driver to cheat☆75May 1, 2026Updated 2 weeks ago
- ☆43Feb 18, 2025Updated last year
- ☆370May 11, 2025Updated last year
- dcsync bof☆52Feb 13, 2026Updated 3 months ago
- https://www.huorong.cn/☆17Apr 16, 2024Updated 2 years ago
- ANY.RUN sandbox detection collection☆24Aug 21, 2024Updated last year