Windows 11 kernel research framework demonstrating DSE bypass on Windows 11 25H2 through boot-time execution. Loads unsigned drivers by surgically patching SeCiCallbacks via native subsystem. Includes anti-loop protection and dual-path architecture. Windows 11 25H2 driver signature enforcement bypass
☆125Apr 9, 2026Updated 2 months ago
Alternatives and similar repositories for KernelResearchKit
Users that are interested in KernelResearchKit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 🔬 IDA plugin to find patched memory☆88Jun 1, 2026Updated last week
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆106Feb 25, 2025Updated last year
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆57Dec 30, 2025Updated 5 months ago
- Minimalistic HTTP(S) client for the NT kernel☆61Dec 1, 2025Updated 6 months ago
- Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1☆80Sep 8, 2025Updated 9 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Implementing Ghostly-Hollowing using tampered syscalls for remote PE injection☆74Dec 26, 2025Updated 5 months ago
- vm_str.hpp is a header only string obfuscator.☆112Aug 24, 2025Updated 9 months ago
- kASLR bypass technique on Intel CPUs.☆34May 18, 2025Updated last year
- ☆102Oct 25, 2025Updated 7 months ago
- Surgical UNWIND_INFO preservation for sleep masking without call stack spoofing.☆53Mar 30, 2026Updated 2 months ago
- LibWinHttp is a simplified WinHTTP wrapper designed as a Crystal Palace shared library for implant development. Its primary purpose is to…☆45Nov 4, 2025Updated 7 months ago
- Advanced PoC & Research for CVE-2026-0828 (Safetica) and CVE-2025-7771 (ThrottleStop). Analysis of BYOVD (Bring Your Own Vulnerable Drive…☆41Feb 4, 2026Updated 4 months ago
- A serie of exploits targeting eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W☆121Oct 19, 2025Updated 7 months ago
- Shellcode capable of bypassing EAF / IAF mitigations☆30Apr 11, 2023Updated 3 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- sigreturn-oriented(SROP) based sleep obfuscation poc for Linux☆70Dec 15, 2025Updated 5 months ago
- KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulatio…☆262May 28, 2026Updated last week
- Monitor Kernel pool allocations tags☆77May 30, 2026Updated last week
- Hotkey-based keylogger for Windows☆33Oct 17, 2024Updated last year
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆168Jul 30, 2025Updated 10 months ago
- Automatic vtable detection, inheritance analysis, and function override tracking for reverse engineering compiled C++ binaries. Supports …☆138Mar 13, 2026Updated 2 months ago
- Windows kernel driver that detects hypervisors by probing SIDT/LIDT edge cases, paging/TLB behaviors, privilege transitions, and timing e…☆47Mar 3, 2026Updated 3 months ago
- An IDA Hex-Rays microcode filter that lifts AVX/AVX2/AVX-512/AVX10 and VMX/VT-x instructions to intrinsics.☆79Jun 2, 2026Updated last week
- Abusing DDMA alongside Copy On Write for Cross Process Code Execution for a 3000$ Bug Bounty☆101Feb 1, 2026Updated 4 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆64Oct 19, 2024Updated last year
- BOF to decrypt Signal Desktop chat logs☆70Feb 20, 2025Updated last year
- 巨硬☆17Oct 4, 2023Updated 2 years ago
- Windows Error Reporting ALPC Elevation of Privilege (CVE-2026-20817) - Proof-of-Concept exploit demonstrating local privilege escalation …☆125Feb 19, 2026Updated 3 months ago
- Control Flow Linearization☆26May 4, 2025Updated last year
- Anti-Rootkit/Anti-Cheat Driver to uncover unbacked or hidden kernel code.☆335Mar 12, 2026Updated 2 months ago
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.☆68May 2, 2023Updated 3 years ago
- ☆18Jan 11, 2026Updated 4 months ago
- nmi stackwalking + module verification☆170Dec 28, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Selective In-Memory Syscall Unhooking, a stealthy method to bypass user-mode hooks in ntdll.dll☆41Mar 11, 2026Updated 2 months ago
- BOF to impersonate TrustedInstaller via DISM API trigger and thread impersonation☆133Mar 27, 2026Updated 2 months ago
- A bin2bin code virtualizer for x86-64 PE's☆145May 31, 2026Updated last week
- Structor is a Hex-Rays plugin that synthesizes C structures from raw pointer arithmetic.☆82Apr 28, 2026Updated last month
- Very easy to use pdb parsing library with only one header file,You can use it even if you are a fool.☆12Feb 12, 2026Updated 3 months ago
- Coefficient-Based Reconstruction of Arithmetic — a Mixed Boolean-Arithmetic (MBA) expression simplifier for deobfuscation☆281Jun 4, 2026Updated last week
- Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…☆19Apr 24, 2023Updated 3 years ago