Skip to content
/ kurasagi Public
forked from NeoMaster831/kurasagi

Windows 11 24H2 Runtime PatchGuard Bypass

License

Apache-2.0 license
0 stars 28 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

CrackerCat/kurasagi

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

32 Commits
VerifyPg
VerifyPg
 
 
assets
assets
 
 
kurasagi
kurasagi
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
kurasagi.sln
kurasagi.sln
 
 

Repository files navigation

kurasagi

kurasagi is full POC of PatchGuard bypass for Windows 24H2.

For more information, please refer to the product branch, which contains the PDF paper detailing the bypass.

If any BSOD which is related to CRITICAL_STRUCTURE_CORRUPTION (PatchGuard) appears, please create issue with it!

Changelog

(2025/08/03) Caution: Upgraded to 26100.4652. for 26100.4351 version bypass, refer to commit 80650b9cb71855042659137ecd8936f8a9336a61.
(2025/08/18) Caution: Updated to 26100.4946.
(2025/08/23) Updated to most Windows 11 24H2 versions. Tested on 26100.4946.

Disclaimers

  1. PLEASE USE IT FOR ONLY EDUCATIONAL PURPOSES!
  2. Do not turn on hypervisor-based security factors when running! (It will BSOD!)
  3. Use kdmapper for driver loading.
  4. After kurasagi has been loaded, we just found there's some weird issue when you allocate pool with NonPagedPoolExecute (or NonPagedPool, it is same), it is not executable. I'll fix as soon as possible.

Images

proof

Credit

Here are the helpful resources I referred to in completing this project. I appreciate these works, ideas, and source codes. Thanks

About

Windows 11 24H2 Runtime PatchGuard Bypass

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C++ 93.1%
  • C 6.9%