Some of my windows kernel exploits for learning purposes
☆138May 18, 2022Updated 4 years ago
Alternatives and similar repositories for windows-kernel-exploits
Users that are interested in windows-kernel-exploits are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆211Jul 2, 2020Updated 5 years ago
- ☆149Jun 5, 2023Updated 3 years ago
- OSED Practice binary☆27Nov 23, 2023Updated 2 years ago
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆256Jul 5, 2022Updated 3 years ago
- ☆162Jul 31, 2022Updated 3 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- ☆113May 24, 2022Updated 4 years ago
- Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…☆261Sep 1, 2022Updated 3 years ago
- Sleep Obfuscation☆835Dec 3, 2023Updated 2 years ago
- ☆26Sep 29, 2022Updated 3 years ago
- Kernel Exploits☆258Jul 18, 2021Updated 4 years ago
- A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…☆32Aug 23, 2023Updated 2 years ago
- Writeup of Payload Techniques in C involving Mutants, Session 1 -> Session 0 migration, and Self-Deletion of payloads.☆129Apr 24, 2022Updated 4 years ago
- Performing Indirect Clean Syscalls☆610May 2, 2026Updated last month
- Some drivers I've written while solving exercises from Practical Reverse Engineering☆15Jan 9, 2022Updated 4 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- PoCs and tools for investigation of Windows process execution techniques☆960Feb 2, 2026Updated 4 months ago
- A small set of Beacon Object Files (BOFs) that I developed over the time with a Magic: The Gathering theme.☆21Jul 15, 2025Updated 10 months ago
- Kernel mode WinDbg extension and PoCs for token privilege investigation.☆918May 22, 2026Updated 2 weeks ago
- Implementation of several code injection techniques.☆23Mar 12, 2022Updated 4 years ago
- HackSysExtremeVulnerableDriver exploits for latest Windows 10 version☆26Jan 13, 2026Updated 4 months ago
- A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.☆19Jun 24, 2021Updated 4 years ago
- HEVD Exploit: BufferOverflowNonPagedPoolNx on Windows 10 22H2 - Escalating from Low Integrity to SYSTEM via Aligned Chunk Confusion☆67Apr 22, 2025Updated last year
- Tools and PoCs for Windows syscall investigation.☆364Dec 2, 2025Updated 6 months ago
- ☆118Aug 7, 2022Updated 3 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC☆377May 24, 2022Updated 4 years ago
- Leaked Windows processes handles identification tool☆291Mar 14, 2022Updated 4 years ago
- ☆1,817Aug 30, 2024Updated last year
- ☆321May 16, 2022Updated 4 years ago
- House of Gods Heap Exploitation Technique☆21Dec 5, 2022Updated 3 years ago
- ☆41Updated this week
- A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)☆572Apr 8, 2025Updated last year
- 横向移动三剑客 ( Lateral movement tools)☆30Nov 16, 2021Updated 4 years ago
- Dumping LSASS with a duplicated handle from custom LSA plugin☆206Feb 23, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A PoC for adding NtContinue to CFG allowed list in order to make Ekko work in a CFG protected process☆116Aug 29, 2022Updated 3 years ago
- Function hooks in Windows NT Kernel☆26Oct 13, 2020Updated 5 years ago
- Zenith exploits a memory corruption vulnerability in the NetUSB driver to get remote-code execution on the TP-Link Archer C7 V5 router fo…☆131Apr 25, 2022Updated 4 years ago
- Some stuff for PHD2021☆14May 21, 2025Updated last year
- Collection of slides☆32Aug 20, 2025Updated 9 months ago
- A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…☆121Jul 21, 2022Updated 3 years ago
- ☆91Oct 17, 2020Updated 5 years ago