exploits for CVE-2024-20017

Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.

StreamDiffusion: A Pipeline-Level Solution for Real-Time Interactive Generation

A set of fully-undetectable process injection techniques abusing Windows Thread Pools

The official Windows Driver Kit documentation sources

Llama 2 Everywhere (L2E)

SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature.

CVE-2023-38831 winrar exploit generator

Unofficial source code repo for Jeffrey Richter and Christophe Nasarre's Windows via C/C++ 5th edition.

This project aims to facilitate debugging a kernel driver in windows by adding support for a code change on the fly without reboot/unload, and more!

Kernel-mode Windows HWID spoofer

ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel driver by importing at runtime.

Windows API Call Obfuscation

Stop indexing me

windows kernel pagehook

Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard

awesome game security [Welcome to PR]

Emulate Drivers in RING3 with self context mapping or unicorn

Hook NtDeviceIoControlFile with PatchGuard

Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver.

A new shellcode injection technique. Given as C++ header or standalone Rust program.

Wireless Kernel Study Notes