kkent030315

icon indicating a website link https://me-5vm.pages.dev

icon location New York City

Results 17 repositories owned by kkent030315

anycall

215
Stars
59
Forks
Watchers

x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration

verified publisher icon kkent030315

PageTableInjection

191
Stars
57
Forks
Watchers

Code Injection, Inject malicious payload via pagetables pml4.

verified publisher icon kkent030315

NoPatchGuardCallback

193
Stars
34
Forks
Watchers

x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code

verified publisher icon kkent030315

evil-mhyprot-cli

302
Stars
69
Forks
Watchers

A PoC for Mhyprot2.sys vulnerable driver that allowing read/write memory in kernel/user via unprivileged user process.

verified publisher icon kkent030315

NtSymbol

95
Stars
25
Forks
Watchers

Resolve DOS MZ executable symbols at runtime

verified publisher icon kkent030315

anymapper

91
Stars
29
Forks
Watchers

x64 Windows kernel driver mapper, inject unsigned driver using anycall

verified publisher icon kkent030315

MsIoExploit

80
Stars
34
Forks
Watchers

Exploit MsIo vulnerable driver

verified publisher icon kkent030315

anyelevate

19
Stars
13
Forks
Watchers

x64 Windows privilege elevation using anycall

verified publisher icon kkent030315

anyvtop

39
Stars
12
Forks
Watchers

x64 Windows implementation of virtual-address to physical-address translation

verified publisher icon kkent030315

kdump

28
Stars
12
Forks
Watchers

A kernel module dumper for Windows x64 using mhyprot vulnerable driver

verified publisher icon kkent030315