Alternatives and similar repositories for windows-kernel-exploits

Users that are interested in windows-kernel-exploits are comparing it to the libraries listed below

• Bw3ll / ROP_ROCKET
  ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…
  ☆159Updated 2 months ago
• zerozenxlabs / CVE-2023-36424
  Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation
  ☆128Updated last year
• fortra / CVE-2022-37969
  Windows LPE exploit for CVE-2022-37969
  ☆137Updated 2 years ago
• yardenshafir / IoRingReadWritePrimitive
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆245Updated 3 years ago
• exploits-forsale / prefetch-tool
  Windows KASLR bypass using prefetch side-channel
  ☆164Updated last year
• exploits-forsale / 24h2-nt-exploit
  Exploit targeting NT kernel in 24H2 Windows Insider Preview
  ☆147Updated last year
• CaledoniaProject / drivers-binaries
  Exploitable drivers, you know what I mean
  ☆154Updated 2 weeks ago
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆207Updated 2 months ago
• xforcered / Windows_MSKSSRV_LPE_CVE-2023-36802
  LPE exploit for CVE-2023-36802
  ☆24Updated 2 years ago
• jonaslyk / exploitkitpub
  ☆97Updated 3 years ago
• ommadawn46 / HEVD-BufferOverflowNonPagedPoolNx-Win10-22H2
  HEVD Exploit: BufferOverflowNonPagedPoolNx on Windows 10 22H2 - Escalating from Low Integrity to SYSTEM via Aligned Chunk Confusion
  ☆61Updated 7 months ago
• D4m0n / CVE-2025-50168-pwn2own-berlin-2025
  CVE-2025-50168 Exploit PoC — Pwn2Own Berlin 2025 - LPE(Windows 11) winning bug.
  ☆127Updated last month
• sathwikch / windows-exploitation
  ☆54Updated 6 years ago
• forrest-orr / Exploits
  A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…
  ☆122Updated 3 years ago
• 0vercl0k / rp-bf.rs
  rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump
  ☆122Updated last year
• waleedassar / SimpleNTSyscallFuzzer
  ☆149Updated last year
• ucsb-seclab / popkorn-artifact
  ☆84Updated 3 months ago
• VoidSec / Exploit-Development
  Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
  ☆233Updated 2 years ago
• TakahiroHaruyama / VDR
  Vulnerable driver research tool, result and exploit PoCs
  ☆224Updated 2 years ago
• waleedassar / RestrictedKernelLeaks
  ☆164Updated 4 years ago
• 20urc3 / Aplos
  Aplos an extremely simple fuzzer for Windows binaries.
  ☆68Updated 9 months ago
• fortra / CVE-2023-28252
  ☆178Updated 2 years ago
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆80Updated 2 years ago
• FuzzySecurity / BHUSA-2023
  ☆105Updated last year
• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆94Updated 3 years ago
• hugsy / recon_2024_windbg_workshop
  ☆74Updated last year
• connormcgarr / Kernel-Exploits
  Kernel Exploits
  ☆260Updated 4 years ago
• 0vercl0k / symbolizer-rs
  A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.
  ☆97Updated last year
• RomanRybachek / CVE-2024-20698
  Analysis of the vulnerability
  ☆51Updated last year
• Idov31 / EtwLeakKernel
  Leaking kernel addresses from ETW consumers. Requires Administrator privileges.
  ☆86Updated 3 weeks ago