xct/windows-kernel-exploits external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

xct/windows-kernel-exploits

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/xct/windows-kernel-exploits)

Close

xct / windows-kernel-exploitsView on GitHubMore

• External links
• Readme badge

Some of my windows kernel exploits for learning purposes

☆137May 18, 2022Updated 3 years ago

Alternatives and similar repositories for windows-kernel-exploits

Users that are interested in windows-kernel-exploits are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Signal-Labs / IOCTLDump

  View on GitHub
  ☆149Jun 5, 2023Updated 2 years ago
• synacktiv / Windows-kernel-SegmentHeap-Aligned-Chunk-Confusion

  View on GitHub
  PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap
  ☆214Jul 2, 2020Updated 5 years ago
• patrickhener / invictus

  View on GitHub
  OSED Practice binary
  ☆26Nov 23, 2023Updated 2 years ago
• yardenshafir / IoRingReadWritePrimitive

  View on GitHub
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆255Jul 5, 2022Updated 3 years ago
• joe-desimone / patriot

  View on GitHub
  ☆158Jul 31, 2022Updated 3 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• RedTeamOperations / Journey-to-McAfee

  View on GitHub
  ☆113May 24, 2022Updated 3 years ago
• 0xMegaByte / COM-Explained

  View on GitHub
  ☆26Sep 29, 2022Updated 3 years ago
• connormcgarr / Kernel-Exploits

  View on GitHub
  Kernel Exploits
  ☆259Jul 18, 2021Updated 4 years ago
• ShorSec / DllNotificationInjection

  View on GitHub
  A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…
  ☆32Aug 23, 2023Updated 2 years ago
• Cracked5pider / Ekko

  View on GitHub
  Sleep Obfuscation
  ☆834Dec 3, 2023Updated 2 years ago
• vp777 / Windows-Non-Paged-Pool-Overflow-Exploitation

  View on GitHub
  Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…
  ☆262Sep 1, 2022Updated 3 years ago
• Maldev-Academy / HellHall

  View on GitHub
  Performing Indirect Clean Syscalls
  ☆611Apr 19, 2023Updated 3 years ago
• alal4465 / Practical-Reverse-Engineering-Solutions

  View on GitHub
  Some drivers I've written while solving exercises from Practical Reverse Engineering
  ☆15Jan 9, 2022Updated 4 years ago
• daem0nc0re / TangledWinExec

  View on GitHub
  PoCs and tools for investigation of Windows process execution techniques
  ☆957Feb 2, 2026Updated 2 months ago
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• Yeeb1 / MagicBOFs

  View on GitHub
  A small set of Beacon Object Files (BOFs) that I developed over the time with a Magic: The Gathering theme.
  ☆21Jul 15, 2025Updated 9 months ago
• Fahersto / code_injection

  View on GitHub
  Implementation of several code injection techniques.
  ☆23Mar 12, 2022Updated 4 years ago
• vportal / HEVD

  View on GitHub
  HackSysExtremeVulnerableDriver exploits for latest Windows 10 version
  ☆26Jan 13, 2026Updated 3 months ago
• daem0nc0re / PrivFu

  View on GitHub
  Kernel mode WinDbg extension and PoCs for token privilege investigation.
  ☆912Mar 25, 2026Updated last month
• xenoscr / compressedCredBandit

  View on GitHub
  A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.
  ☆19Jun 24, 2021Updated 4 years ago
• ommadawn46 / HEVD-BufferOverflowNonPagedPoolNx-Win10-22H2

  View on GitHub
  HEVD Exploit: BufferOverflowNonPagedPoolNx on Windows 10 22H2 - Escalating from Low Integrity to SYSTEM via Aligned Chunk Confusion
  ☆66Apr 22, 2025Updated last year
• Octoberfest7 / Mutants_Sessions_Self-Deletion

  View on GitHub
  Writeup of Payload Techniques in C involving Mutants, Session 1 -> Session 0 migration, and Self-Deletion of payloads.
  ☆129Apr 24, 2022Updated 4 years ago
• daem0nc0re / AtomicSyscall

  View on GitHub
  Tools and PoCs for Windows syscall investigation.
  ☆366Dec 2, 2025Updated 4 months ago
• rad9800 / VehApiResolve

  View on GitHub
  ☆119Aug 7, 2022Updated 3 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• thefLink / DeepSleep

  View on GitHub
  A variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC
  ☆378May 24, 2022Updated 3 years ago
• lab52io / LeakedHandlesFinder

  View on GitHub
  Leaked Windows processes handles identification tool
  ☆291Mar 14, 2022Updated 4 years ago
• wavestone-cdt / EDRSandblast

  View on GitHub
  ☆1,812Aug 30, 2024Updated last year
• Milo-D / house-of-gods

  View on GitHub
  House of Gods Heap Exploitation Technique
  ☆20Dec 5, 2022Updated 3 years ago
• OtterHacker / AWSRoundRobin

  View on GitHub
  ☆41Feb 20, 2025Updated last year
• y11en / lm_tools

  View on GitHub
  横向移动三剑客 ( Lateral movement tools)
  ☆30Nov 16, 2021Updated 4 years ago
• kkent030315 / EvilHooker

  View on GitHub
  Function hooks in Windows NT Kernel
  ☆26Oct 13, 2020Updated 5 years ago
• 0vercl0k / zenith

  View on GitHub
  Zenith exploits a memory corruption vulnerability in the NetUSB driver to get remote-code execution on the TP-Link Archer C7 V5 router fo…
  ☆132Apr 25, 2022Updated 4 years ago
• gam4er / SneakyRun

  View on GitHub
  Some stuff for PHD2021
  ☆14May 21, 2025Updated 11 months ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• 474172261 / slides

  View on GitHub
  Collection of slides
  ☆33Aug 20, 2025Updated 8 months ago
• forrest-orr / Exploits

  View on GitHub
  A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…
  ☆122Jul 21, 2022Updated 3 years ago
• h0mbre / Windows-Exploits

  View on GitHub
  ☆90Oct 17, 2020Updated 5 years ago
• RedTeamOperations / Advanced-Process-Injection-Workshop

  View on GitHub
  ☆780Oct 17, 2023Updated 2 years ago
• ocastejon / linux-kernel-learning

  View on GitHub
  Notes, exploits, and other stuff that I create while learning Linux Kernel exploitation techniques
  ☆95Mar 21, 2023Updated 3 years ago
• csandker / RPCDump

  View on GitHub
  ☆85Jan 12, 2022Updated 4 years ago
• redr0nin / Agentic-Flow-Corruption-Attacks

  View on GitHub
  A red teaming attack paradigm against AI Agents
  ☆33Mar 9, 2025Updated last year