Please do not report security vulnerabilities through public GitHub issues.

Report privately via GitHub Security Advisories.

• Description of the vulnerability
• Steps to reproduce
• Potential impact

• Acknowledgement: within 3 business days
• Initial assessment: within 7 days

ZeroDivert requires Administrator privileges to operate (WinDivert kernel driver).

• Only download ZeroDivert from the official repository
• WinDivert may trigger antivirus warnings — this is a known false positive. Source code is available at basil00/WinDivert

Out of scope:

• WinDivert itself — report to the WinDivert project
• Vulnerabilities in the .NET runtime