ntkrnlmp

ntkrnlmp's Stars

• simondankelmann/Bluetooth-LE-Spam

  Language:Kotlin4.1k72231316

• markqvist/Reticulum

  The cryptography-based networking stack for building unstoppable networks with LoRa, Packet Radio, WiFi and everything in between.

  Language:Python2.2k68111140

• iPower/KasperskyHook

  Hook system calls on Windows by using Kaspersky's hypervisor

  Language:C++1.1k3012271

• anzelesnik/SyscallHook

  System call hook for Windows 10 20H1

  Language:C++484115104

• mandiant/STrace

  A DTrace on Windows Reimplementation

  Language:C++335141341

• WithSecureLabs/lolcerts

  A repository of code signing certificates known to have been leaked or stolen, then abused by threat actors

  Language:YARA33511127

• VoidSec/DriverBuddyReloaded

  Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks

  Language:Python331142651

• notscimmy/libelevate

  Handle elevation DKOM against ObRegisterCallbacks

  Language:C++2858648

• Oxygen1a1/InfinityHook_latest

  etw hook (syscall/infinity hook) compatible with the latest Windows version of PG

  Language:C++2257368

• SamuelTulach/memhv

  Minimalistic AMD-V/SVM hypervisor with memory introspection capabilities

  Language:C++1927527

• zer0condition/ZeroHVCI

  Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling without admin permissions or kernel drivers.

  Language:C1886135

• ioncodes/long_night

  A collection of themes based on pastel colors, created for reverse engineers

  Language:CSS1145911

• lstaroth/AntiXorstr

  IDA Pro plugin AntiXorstr

  Language:Python1062223

• whatisjery/react-fluid-distortion

  Post-processing fluid distortion effects in response to cursor interactions for React-Three-Fiber.

  Language:TypeScript822513

• Oliver-1-1/ModuleSpoof

  Language:C++692226

• i32-Sudo/EAC-CR3Bypass

  My EAC & BE Rady CR3 Reading & Writing source that I use for my KM Drivers.

  Language:C++462010

• waawaa/breakcyserver

  Language:C++452111

• gmh5225/titan-1

  Titan is a VMProtect devirtualizer

  43132

• conorbailey90/rgb-split-distortion-scroll-effect

  Use parcel to run this project. cmd: 'parcel index.html'

  Language:JavaScript313014

• ZeroDayArcade/capture-handshake-wpa-wifi-hacking

  A python script for capturing 4-way handshakes for WPA/WPA2 WiFi networks.

  Language:Python30222

• DGRonpa/Process_Injection

  Language:C++23106

• armvirus/VanguardTrace

  Decrypting and intercepting encrypted imports of Vanguards Kernel Driver

  Language:C++20103

• DriverHunter/Win-Driver-EXP

  This repo contains EXPs about Vulnerable Windows Driver

  20204

• ItzPAX/VulnDriverFinder

  browse microsoft driver server for potentially vulnerable drivers

  Language:C#13109

• 0x597575746F/open-process

  A DLL that replaces OpenProcess with a function that steals handles from CSRSS.exe

  Language:C++4101

• shaygitub/VulnDrvScan

  this simple tool scans drivers for potential arbitrary writing vulnurabilities using their IAT. this tool was used as part of my windows rootkit to initially search for vulnurable drivers to exploit (before using CVE database)

  Language:C++3101

• coffeepea/kdm

  Kernel Driver Mapper using a vulnerable driver (WinIo.sys). stale / not finished

  Language:C2

• juvoy/valorant

  This is a repository for the reverse engineering of valorant

  Language:C++210

• xw1369/NiceDriverMapper

  Language:C++2102

• Nort721/DLM

  Monitor drivers that are being loaded to the windows kernel

  Language:C++1100