{"payload":{"pageCount":6,"repositories":[{"type":"Public","name":"MS-DOS","owner":"WindowsKernel","isFork":true,"description":"The original sources of MS-DOS 1.25, 2.0, and 4.0 for reference purposes","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Assembly","color":"#6E4C13"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":4241,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-04-25T22:32:47.572Z"}},{"type":"Public","name":"InfinityHook_latest","owner":"WindowsKernel","isFork":true,"description":"etw hook (syscall/infinity hook) compatible with the latest Windows version of PG","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":53,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-04-22T07:57:45.699Z"}},{"type":"Public","name":"unKover","owner":"WindowsKernel","isFork":true,"description":"PoC Anti-Rootkit to uncover Windows Drivers/Rootkits mapped to Kernel Memory.","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":18,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-03-23T15:03:30.184Z"}},{"type":"Public","name":"kdmp-parser-rs","owner":"WindowsKernel","isFork":true,"description":"A KISS Rust crate to parse Windows kernel crash-dumps created by Windows & its debugger.","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Rust","color":"#dea584"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":4,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-03-21T04:01:46.613Z"}},{"type":"Public","name":"Banshee","owner":"WindowsKernel","isFork":true,"description":"Experimental Windows x64 Kernel Rootkit.","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":66,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-02-26T07:06:05.419Z"}},{"type":"Public","name":"FmDriver","owner":"WindowsKernel","isFork":true,"description":"一个简单的驱动 具有R3 调用","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C","color":"#555555"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":24,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-02-18T09:03:26.279Z"}},{"type":"Public","name":"Medusa","owner":"WindowsKernel","isFork":true,"description":"Radical Windows ARK","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C","color":"#555555"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":57,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-02-07T15:36:00.211Z"}},{"type":"Public","name":"Windows-Internals-Debugging-Performance-Learning-Resources","owner":"WindowsKernel","isFork":true,"description":"","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":null,"pullRequestCount":0,"issueCount":0,"starsCount":3,"forksCount":4,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-11-29T19:20:08.704Z"}},{"type":"Public","name":"RealBlindingEDR","owner":"WindowsKernel","isFork":true,"description":"Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":2,"forksCount":135,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-10-29T04:25:27.906Z"}},{"type":"Public","name":"KernelDwm","owner":"WindowsKernel","isFork":true,"description":"Kernel dwm render","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":54,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-10-10T12:04:36.620Z"}},{"type":"Public","name":"Inject_Win","owner":"WindowsKernel","isFork":true,"description":"inject dll ","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":3,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-09-20T08:13:29.416Z"}},{"type":"Public template","name":"wdk_template","owner":"WindowsKernel","isFork":true,"description":"Windows kernel driver template for cmkr (with testsigning).","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":1,"forksCount":12,"license":"Boost Software License 1.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-08-28T01:00:28.297Z"}},{"type":"Public","name":"CritSectionVsKernelObject","owner":"WindowsKernel","isFork":true,"description":"POC project to demonstrate performance difference between a critical section and a synchronization kernel object in Windows.","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":1,"forksCount":2,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-08-22T23:08:32.816Z"}},{"type":"Public","name":"NVDrv","owner":"WindowsKernel","isFork":true,"description":"Abusing nvidia driver (nvoclock.sys) for physical/virtual memory and control register manipulation.","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":69,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-08-21T14:13:03.693Z"}},{"type":"Public","name":"enum_real_dirbase","owner":"WindowsKernel","isFork":true,"description":"从MmPfnData中枚举进程和页目录基址","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":45,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-08-18T05:06:25.467Z"}},{"type":"Public","name":"WindowProtect","owner":"WindowsKernel","isFork":true,"description":"Etw hook 查找窗口相关内核函数 实现窗口保护 适用于Win10","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C","color":"#555555"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":20,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-08-10T14:21:00.145Z"}},{"type":"Public","name":"kcrypt","owner":"WindowsKernel","isFork":true,"description":"an encryption library designed for Windows kernel and driver programming","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":42,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-08-04T09:38:48.994Z"}},{"type":"Public","name":"PPL","owner":"WindowsKernel","isFork":true,"description":"run process as PPL Antimalware (ELAM) ","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C","color":"#555555"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":3,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-07-31T00:20:23.057Z"}},{"type":"Public","name":"windows-kernel-cve","owner":"WindowsKernel","isFork":true,"description":"","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C","color":"#555555"},"pullRequestCount":0,"issueCount":0,"starsCount":2,"forksCount":2,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-07-28T14:49:41.026Z"}},{"type":"Public","name":"BlackLotus","owner":"WindowsKernel","isFork":true,"description":"BlackLotus UEFI Windows Bootkit","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C","color":"#555555"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":448,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-07-12T21:43:22.304Z"}},{"type":"Public","name":"FakeSign","owner":"WindowsKernel","isFork":true,"description":"自建时间戳服务器实现伪签名驱动证书 Implementing Pseudo Signature with Self-Sign Timestamp Servers","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Tcl","color":"#e4cc98"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":42,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-06-08T04:36:20.286Z"}},{"type":"Public","name":"WinArk","owner":"WindowsKernel","isFork":true,"description":"Windows Anti-Rootkit Tool","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":121,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-06-01T01:18:55.771Z"}},{"type":"Public","name":"PTE-View","owner":"WindowsKernel","isFork":true,"description":"","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C#","color":"#178600"},"pullRequestCount":0,"issueCount":0,"starsCount":1,"forksCount":1,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-05-24T07:29:47.899Z"}},{"type":"Public","name":"WFPExplorer","owner":"WindowsKernel","isFork":true,"description":"Windows Filtering Platform Explorer","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":1,"forksCount":33,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-05-07T16:07:07.361Z"}},{"type":"Public","name":"Windows-10-22H2-Vulnerable-driver-communication","owner":"WindowsKernel","isFork":true,"description":"Allocate memory in the kernel & r/w control registers with a vulnerable driver.","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":16,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-05-07T15:32:47.051Z"}},{"type":"Public","name":"3d-injector","owner":"WindowsKernel","isFork":true,"description":"","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C","color":"#555555"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":15,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-04-14T08:02:47.759Z"}},{"type":"Public","name":"PatchGuardBypass","owner":"WindowsKernel","isFork":true,"description":"Bypassing PatchGuard on modern x64 systems","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":52,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-03-31T05:25:07.806Z"}},{"type":"Public","name":"Chaos-Rootkit","owner":"WindowsKernel","isFork":true,"description":"x64 ring0 Rootkit with Process Hiding and Privilege Escalation Capabilities","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C","color":"#555555"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":116,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-03-29T23:05:30.728Z"}},{"type":"Public","name":"drivers-binaries","owner":"WindowsKernel","isFork":true,"description":"Exploitable drivers, you know what I mean 加载有漏洞的驱动","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":null,"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":24,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-03-26T07:35:27.334Z"}},{"type":"Public","name":"Kernel-Force-Delete","owner":"WindowsKernel","isFork":true,"description":"force delete runing .exe application file.or delete any locked file","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":42,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-03-21T09:17:34.335Z"}}],"repositoryCount":176,"userInfo":null,"searchable":true,"definitions":[],"typeFilters":[{"id":"all","text":"All"},{"id":"public","text":"Public"},{"id":"source","text":"Sources"},{"id":"fork","text":"Forks"},{"id":"archived","text":"Archived"},{"id":"template","text":"Templates"}],"compactMode":false},"title":"Repositories"}