Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module

WKTools Is a Power Windows Kernel Tools

Windows Kernel Programming

Anti-Rootkit & System kernel management tool

Anti-Ransomware Detection Tool

Practical Reverse Engineering Exercises

All undocumented ntoskrnl structs crawled from vergiliusproject.com

The project demonstrates a simple detection method for SSDT Hook in User Mode via BYOVD

Lab ini dirancang khusus untuk mempelajari teknik eksploitasi pada ring 0 (Kernel Mode). Berfokus pada analisis kerentanan driver Windows, repositori ini mencakup berbagai metode untuk memicu vulnerability seperti Stack Overflow, Pool Overflow, atau Arbitrary Write. Ideal bagi Security Researcher yang ingin memperdalam kemampuan Reverse Engineering