kernel-driver

There are 298 repositories under kernel-driver topic.

  • kvm-guest-drivers-windows

    virtio-win/kvm-guest-drivers-windows

    Windows paravirtualized drivers for QEMU\KVM

    Language:C2.5k98487423
  • BestEdrOfTheMarket

    Xacone/BestEdrOfTheMarket

    EDR Lab for Experimentation Purposes

    Language:C++1.4k189149

  • pritamzope/OS

    Writing & Making Operating System and Kernel parts so simple like Hello World Programs, Starting from writing Bootloaders, Hello World Kernel, GDT, IDT, Terminal, Keyboard/Mouse, Memory Manager, HDD ATA R/W, VGA/VESA Graphics

    Language:C7922327112

  • landhb/HideProcess

    A basic Direct Kernel Object Manipulation rootkit that removes a process from the EPROCESS list, hiding it from the Task Manager

    Language:C6902216120

  • linuxwacom/input-wacom

    Linux kernel driver for Wacom devices

    Language:C6772036561

  • vxlang/vxlang-page

    protector & obfuscator & code virtualizer

    Language:C++652131346

  • donnaskiez/ac

    kernel mode anti cheat

    Language:C595208115

  • 0xflux/Sanctum

    Sanctum is an experimental proof-of-concept EDR, designed to detect modern malware techniques, above and beyond the capabilities of antivirus. Built in Rust.

    Language:Rust44875946

  • jxy-s/stlkrn

    C++ STL in the Windows Kernel with C++ Exception Support

    Language:C++433111482

  • MartinDrab/IRPMon

    The goal of the tool is to monitor requests received by selected device objects or kernel drivers. The tool is quite similar to IrpTracker but has several enhancements. It supports 64-bit versions of Windows (no inline hooks are used, only moodifications to driver object structures are performed) and monitors IRP, FastIo, AddDevice, DriverUnload and StartIo requests.

    Language:Pascal4002810997

  • andikleen/simple-pt

    Simple Intel CPU processor tracing on Linux

    Language:C351242576

  • ucsb-seclab/dr_checker

    DR.CHECKER : A Soundy Vulnerability Detection Tool for Linux Kernel Drivers

    Language:C++338152670

  • mohitmishra786/exploring-os

    This repository is a journey through Operating System concepts, with practical implementations in C. Each day focuses on a specific topic, providing theoretical understanding and hands-on coding experience.

    Language:HTML3168153

  • SergiusTheBest/FindWDK

    CMake module for building drivers with Windows Development Kit (WDK)

    Language:CMake310132162

  • BeetleChunks/redsails

    RedSails is a Python based post-exploitation project aimed at bypassing host based security monitoring and logging. DerbyCon 2017 Talk: https://www.youtube.com/watch?v=Ul8uPvlOsug

    Language:Python30717364
  • DragonBurn

    ByteCorum/DragonBurn

    DragonBurn is CS2(Counter-Strike 2 cheat) kernel-mode read-only external cheat. Undetected by all anti-cheats except Faceit.

    Language:C++22067458

  • XaFF-XaFF/Kernel-Process-Hollowing

    Windows x64 kernel mode rootkit process hollowing POC.

    Language:C++1895127

  • ntoskrnl7/crtsys

    C/C++ Runtime library for system file (Windows Kernel Driver) - Supports Microsoft STL

    Language:C++1886234

  • dennisbabkin/InjectAll

    Tutorial & a blog post that demonstrate how to code a Windows driver to inject a custom DLL into all running processes. I coded it from start to finish using C++ and x86/x64 Assembly language in Microsoft Visual Studio. The solution includes a kernel driver project, a DLL project and a C++ test console project.

    Language:C++1387533

  • lem0nSec/KBlast

    Basic interactive Windows kernel offensive toolkit written in C

    Language:C++1337027

  • TheMalwareGuardian/Awesome-Bootkits-Rootkits-Development

    A curated compilation of extensive resources dedicated to bootkit and rootkit development.

    Language:HTML1293010

  • lelegard/arm-cpusysregs

    Access Arm64 CPU system registers

    Language:C++1109613

  • backengineering/Voyager

    A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)

    Language:C983015

  • IDouble/Kernel-Memory-Reading-Writing

    🔍 Code to read / write the Process Memory from the Kernel 🔧

    Language:C92407

  • MiroKaku/Musa.Core

    Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.

    Language:C++898716

  • fuqiuluo/ovo

    Android aarch64 kernel driver module providing efficient memory operations, touch simulation and IPC. Features include fast memory remapping.

    Language:C853638

  • ZeroLP/WDK.NET

    Windows Kernel Driver Development in C# with Windows Driver Kit (WDK)

    Language:C#80311

  • mathisvickie/KMAC

    Some usefull info when reverse engineering Kernel Mode Anti-Cheat

    Language:C++753022

  • 3a1/Zodiak

    CS 1.6 Fastcup Full Kernel Driver Cheat

    Language:C6751011

  • debasishm89/iofuzz

    A mutation based user mode (ring3) dumb in-memory Windows Kernel (IOCTL) Fuzzer/Logger. This script attach it self to any given process and hooks DeviceIoControl!Kernel32 API and try to log or fuzz all I/O Control code I/O Buffer pointer, I/O buffer length that process sends to any Kernel driver.

    Language:Python677024

  • Kazuto2007/Undetected-driver

    Fortnite cheat , Fortnite External , Kernel , Fortnite UD , undetected

    Language:C++671013

  • kerneltlv/kernel-hacking

    An environment and set of utilities aimed at making kernel hacking simple and accessible

    Language:Python63537

  • donnaskiez/hv

    intel vt-x type 2 hypervisor

    Language:C60218

  • mathisvickie/CVE-2021-21551

    arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system

    Language:C584011

  • es3n1n/dolboeb-executor

    capcom-like executor for any physmem driver

    Language:C++572011

  • sgabe/SymlinkProtect

    File system minifilter driver for Windows to block symbolic link attacks.

    Language:C++523015