windows-kernel
There are 59 repositories under windows-kernel topic.
winfsp/winfsp
Windows File System Proxy - FUSE for Windows
HyperDbg/HyperDbg
State-of-the-art native debugging tool
rabbitstack/fibratus
A modern tool for Windows kernel exploration and tracing with a focus on security
tandasat/HyperPlatform
Intel VT-x based hypervisor aiming to provide a thin VM-exit filtering platform on Windows.
vitoplantamura/BugChecker
SoftICE-like kernel debugger for Windows 11
daem0nc0re/PrivFu
Kernel mode WinDbg extension and PoCs for token privilege investigation.
can1357/NtRays
Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
winfsp/winspd
Windows Storage Proxy Driver - User mode disk storage
MiroKaku/ucxxrt
The Universal C++ RunTime library, supporting kernel-mode C++ exception-handler and STL.
jxy-s/stlkrn
C++ STL in the Windows Kernel with C++ Exception Support
KelvinMsft/kHypervisor
kHypervisor is a lightweight bluepill-like nested VMM for Windows, it provides and emulating a basic function of Intel VT-x
daem0nc0re/AtomicSyscall
Tools and PoCs for Windows syscall investigation.
tandasat/SimpleSvmHook
SimpleSvmHook is a research purpose hypervisor for Windows on AMD processors.
VoidSec/DriverBuddyReloaded
Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks
tandasat/SimpleSvm
A minimalistic educational hypervisor for Windows on AMD processors.
ntoskrnl7/crtsys
C/C++ Runtime library for system file (Windows Kernel Driver) - Supports Microsoft STL
daem0nc0re/SharpWnfSuite
C# Utilities for Windows Notification Facility
amiryeshurun/HyperWin
A native hypervisor designed for the Windows operating system
0vercl0k/sic
Enumerate user mode shared memory mappings on Windows.
therealdreg/masm32-kernel-programming
masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
0dayResearchLab/msFuzz
Targeting Windows Kernel Driver Fuzzer
SoftSec-KAIST/NTFuzz
NTFUZZ: Enabling Type-Aware Kernel Fuzzing on Windows with Static Binary Analysis (IEEE S&P '21)
Deputation/kernel_payload_comms
A proof of concept demonstrating communication via mapped shared memory structures between a user-mode process and a kernel-mode payload on Windows 10 20H2.
KiFilterFiberContext/windows-software-policy
Research on obfuscated licensing APIs / CLIP service in the Windows kernel
Anonym0usWork1221/android-memorytool
Android Memory Tools written in python for RAM data reading and writing process of android, linux and windows os's.
loneicewolf/smbdoor
improving zerosums smbdoor - a silent remote backdoor which abuses undoc. APIs in srvnet.sys
danielkrupinski/KernelProcessList
Example Windows Kernel-mode Driver which enumerates running processes.
daem0nc0re/HEVD-CSharpKernelPwn
CSharp Writeups for HackSys Extreme Vulnerable Driver
IDouble/Kernel-Memory-Reading-Writing
🔍 Code to read / write the Process Memory from the Kernel 🔧
SilverTuxedo/keval
Call arbitrary Windows kernel-mode functions from Python on another machine
yardenshafir/DpcWait
Driver demonstrating how to register a DPC to asynchronously wait on an object
SubconsciousCompute/fsfilter-rs
Experimental: A rust library to monitor filesystem 🪛 and more in windows
therealdreg/dregate
call gates as stable comunication channel for NT x86 and Linux x86_64
therealdreg/cagrackme
short crackme for Windows XP SP3 (32 bit version). ring0 stuff. IMO very fun x-)
0xcpu/exthost
A POC for Windows Extension Host hooking