kernel-driver

There are 16 repositories under kernel-driver topic.

• kvm-guest-drivers-windows

  virtio-win / kvm-guest-drivers-windows

  Windows paravirtualized drivers for QEMU\KVM

  kvm-hypervisorkvmqemuqemu-kvmdriversvirtualizationguestguest-agentc-plus-plusvirtiovirtio-wincndisstorportwdfwdmwindowskernel-driverwindows-driverwindows-driver-kit
  Language:C 2451
• BestEdrOfTheMarket

  Xacone / BestEdrOfTheMarket

  EDR Lab for Experimentation Purposes

  edrdefense-evasionedr-evasionedr-testingkernel-developmentkernel-driver
  Language:C++ 1377

• pritamzope / OS

  Writing & Making Operating System and Kernel parts so simple like Hello World Programs, Starting from writing Bootloaders, Hello World Kernel, GDT, IDT, Terminal, Keyboard/Mouse, Memory Manager, HDD ATA R/W, VGA/VESA Graphics

  ososdevkernelkernel-driverx86-assemblyx86-nasmbootloadergraphicsassemblyhello-worldkernel-developmentoperating-system
  Language:C 792

• landhb / HideProcess

  A basic Direct Kernel Object Manipulation rootkit that removes a process from the EPROCESS list, hiding it from the Task Manager

  dkomkernel-driverrootkitold-school
  Language:C 690

• linuxwacom / input-wacom

  Linux kernel driver for Wacom devices

  wacomdriverskernelkernel-modulekernel-driverbackportstablet
  Language:C 676

• vxlang / vxlang-page

  protector & obfuscator & code virtualizer

  packerprotectorvirtualizerwindowscode-virtualizerobfuscatorreverse-engineeringanti-tampersecurityx86-64x86virtual-machinevirtualizationkernel-driverkernel-moduledotnetthemidavmprotect
  Language:C++ 652

• donnaskiez / ac

  kernel mode anti cheat

  anti-cheatanti-tamperanticheatanticheat-systemgame-hackingkernelkernel-drivervirtualization
  Language:C 594

• 0xflux / Sanctum

  Sanctum is an experimental proof-of-concept EDR, designed to detect modern malware techniques, above and beyond the capabilities of antivirus. Built in Rust.

  antivirusantivirus-softwareblue-teamcyber-securitydriveredrkernel-drivermalware-analysismalware-researchred-teamrustrust-driverwindows-driverwindows-rustrust-edrrust-windowsrust-windows-drivertauritauri-appendpoint-detection-response
  Language:Rust 446

• jxy-s / stlkrn

  C++ STL in the Windows Kernel with C++ Exception Support

  windows-kernelwindows-drivercppcpp17-librarycpp17stlstl-containerscpp-librarycpp-programmingkernel-drivermsvcmsvc-windowsmsvcrtmsvcrtlcpp14cpp14-librarycpp20cpp20-library
  Language:C++ 433

• MartinDrab / IRPMon

  The goal of the tool is to monitor requests received by selected device objects or kernel drivers. The tool is quite similar to IrpTracker but has several enhancements. It supports 64-bit versions of Windows (no inline hooks are used, only moodifications to driver object structures are performed) and monitors IRP, FastIo, AddDevice, DriverUnload and StartIo requests.

  fastioirpkernel-drivermonitorwindows
  Language:Pascal 400

• andikleen / simple-pt

  Simple Intel CPU processor tracing on Linux

  kernel-driverpt-decodertraceprocessor-tracedebugx86performance-analysisperformance-tuning
  Language:C 350

• ucsb-seclab / dr_checker

  DR.CHECKER : A Soundy Vulnerability Detection Tool for Linux Kernel Drivers

  kernelkernel-driverllvmvulnerability-detectionvulnerability-scanners
  Language:C++ 337

• mohitmishra786 / exploring-os

  This repository is a journey through Operating System concepts, with practical implementations in C. Each day focuses on a specific topic, providing theoretical understanding and hands-on coding experience.

  c-programmingc-programming-languagecpukernel-driverkernel-modulelinuxlinux-kerneloperating-systemoperating-systemsosprogrammingproject-repository
  Language:HTML 316

• SergiusTheBest / FindWDK

  CMake module for building drivers with Windows Development Kit (WDK)

  cmake-modulecmakekernel-driverdriverwdkwindowskmdf
  Language:CMake 310

• BeetleChunks / redsails

  RedSails is a Python based post-exploitation project aimed at bypassing host based security monitoring and logging. DerbyCon 2017 Talk: https://www.youtube.com/watch?v=Ul8uPvlOsug

  event-loggingfirewallkernel-driverpydivertpythonwindivertwindows
  Language:Python 307
• DragonBurn

  ByteCorum / DragonBurn

  DragonBurn is CS2(Counter-Strike 2 cheat) kernel-mode read-only external cheat. Undetected by all anti-cheats except Faceit.

  ccheatcppcs2-aimbotcs2-cheatcs2-espcs2-hackexternalgame-hackgame-hackingimguiundetectedkernelkernel-drivercounter-strikecounter-strike-2cs2
  Language:C++ 221

• XaFF-XaFF / Kernel-Process-Hollowing

  Windows x64 kernel mode rootkit process hollowing POC.

  kernel-driverprocesshollowingrootkitwindowsx64
  Language:C++ 189

• ntoskrnl7 / crtsys

  C/C++ Runtime library for system file (Windows Kernel Driver) - Supports Microsoft STL

  windows-driverwindows-kernelcrtcruntime-librarycppdriver-programmingstlwdkckernelkernel-driverucrtcpp17cpp20modern-cppcpp14kernel-driverskernel-modulewindows-drivers
  Language:C++ 188

• dennisbabkin / InjectAll

  Tutorial & a blog post that demonstrate how to code a Windows driver to inject a custom DLL into all running processes. I coded it from start to finish using C++ and x86/x64 Assembly language in Microsoft Visual Studio. The solution includes a kernel driver project, a DLL project and a C++ test console project.

  assembly-languagecppdll-injectionkernel-driverlow-level-programmingvisual-studiowindowsx86-64x86-assembly
  Language:C++ 138

• lem0nSec / KBlast

  Basic interactive Windows kernel offensive toolkit written in C

  kernelkernel-driverring0windowswindows-internals
  Language:C++ 133

• lelegard / arm-cpusysregs

  Access Arm64 CPU system registers

  arm64cpu-registerskernel-driverkernel-extensionkernel-modulecontrol-flow-integritypointer-authentication-codes-arm
  Language:C++ 110

• backengineering / Voyager

  A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)

  hypervhypervisorkernelkernel-driversecuritywindows
  Language:C 98

• IDouble / Kernel-Memory-Reading-Writing

  🔍 Code to read / write the Process Memory from the Kernel 🔧

  kernelreadwritememoryprocesskernelmodectemplatesimpleeasy-to-usewindowsthreadkernel-driverkernel-functionswindows-kernel
  Language:C 92

• MiroKaku / Musa.Core

  Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.

  kernel-driverntdllntoswindows
  Language:C++ 89

• fuqiuluo / ovo

  Android aarch64 kernel driver module providing efficient memory operations, touch simulation and IPC. Features include fast memory remapping.

  androidandroid-drivercheatkernel-driverkernel-modulememorymmuhackrootkit-kernel
  Language:C 85

• ZeroLP / WDK.NET

  Windows Kernel Driver Development in C# with Windows Driver Kit (WDK)

  csharpdotnetkernelkernel-drivernaotnativenativeaotnet7wdkwindows
  Language:C# 80

• mathisvickie / KMAC

  Some usefull info when reverse engineering Kernel Mode Anti-Cheat

  anti-cheatanticheatdriverheuristicskernelkernel-driverkmacreverse-engineeringwindows
  Language:C++ 75

• 3a1 / Zodiak

  CS 1.6 Fastcup Full Kernel Driver Cheat

  aimbotcheatcounter-strikegoldsrckernel-driver
  Language:C 67

• debasishm89 / iofuzz

  A mutation based user mode (ring3) dumb in-memory Windows Kernel (IOCTL) Fuzzer/Logger. This script attach it self to any given process and hooks DeviceIoControl!Kernel32 API and try to log or fuzz all I/O Control code I/O Buffer pointer, I/O buffer length that process sends to any Kernel driver.

  kernel-driverfuzzerioctl
  Language:Python 67

• Kazuto2007 / Undetected-driver

  Fortnite cheat , Fortnite External , Kernel , Fortnite UD , undetected

  cheatfortnitefortnite-aimbotfortnite-cheatfortnite-driverfortnite-espfortnite-externalfortnite-wallhackioctlkernelkernel-drivermemorysharedundetectedvalorant-aimbotvalorant-espvalorant-hackdataptr
  Language:C++ 67

• kerneltlv / kernel-hacking

  An environment and set of utilities aimed at making kernel hacking simple and accessible

  linuxlinux-kernellinux-driverslinux-kernel-modulekernelkernel-modulekernel-driverkernel-sourcekernel-moduleskernel-compilationoperating-systemoperating-systemslearninglearning-by-doinglearn-to-codelearnkernel-hackingnewcomerskernel-developersliterate-programming
  Language:Python 63

• donnaskiez / hv

  intel vt-x type 2 hypervisor

  hypervisorintelkernelkernel-drivervirtual-machinevirtualizationvt-xwindows
  Language:C 60

• es3n1n / dolboeb-executor

  capcom-like executor for any physmem driver

  cppdriverkernel-driverreverse-engineeringring-0windowsx64
  Language:C++ 57

• mathisvickie / CVE-2021-21551

  arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system

  cvecve-2021-21551dbutildelldell-driverdriverexploitkernelkernel-driverlocal-privilege-escalationpocprivilege-escalationproof-of-conceptwindows
  Language:C 57

• sgabe / SymlinkProtect

  File system minifilter driver for Windows to block symbolic link attacks.

  kernel-driverminifilter-driverwindows-10symlinkmitigation
  Language:C++ 52

• micREsoft / SysCaller

  SysCaller: SDK for WindowsAPI via syscalls. Dynamic Resolution, Obfuscation, Multi-Language Bindings, & more!

  reverse-engineeringwindowsmasmntdllsyscallobfuscationredteamsecuritysyscalls
  Language:C 49