kernel-driver

Windows paravirtualized

Linux kernel driver for Wacom devices

Writing & Making Operating System and Kernel parts so simple like Hello World Programs, Starting from writing Bootloaders, Hello World Kernel, GDT, IDT, Terminal, Keyboard/Mouse, Memory Manager, HDD ATA R/W, VGA/VESA Graphics

A basic Direct Kernel Object Manipulation rootkit that removes a process from the EPROCESS list, hiding it from the Task Manager

DR.CHECKER : A Soundy Vulnerability Detection Tool for Linux Kernel Drivers

The goal of the tool is to monitor requests received by selected device objects or kernel drivers. The tool is quite similar to IrpTracker but has several enhancements. It supports 64-bit versions of Windows (no inline hooks are used, only moodifications to driver object structures are performed) and monitors IRP, FastIo, AddDevice, DriverUnload…

RedSails is a Python based post-exploitation project aimed at bypassing host based security monitoring and logging. DerbyCon 2017 Talk: https://www.youtube.com/watch?v=Ul8uPvlOsug

Simple Intel CPU processor tracing on Linux

C++ STL in the Windows Kernel with C++ Exception Support

Casper-fs is a Custom Hidden Linux Kernel Module generator. Each module works in the file system to protect and hide secret files.

CMake module for building drivers with Windows Development Kit (WDK)

《Windows 内核安全编程技术实践》 系列书籍，揭秘 Anti RootKit 反内核工具核心原理与技术实现细节。 The series of books, "Practice of Windows Kernel Security Programming Technology", reveals the core principles and technical implementation details of Anti-RootKit anti-kernel tools.

C/C++ Runtime library for system file (Windows Kernel Driver) - Supports Microsoft STL

一款免费的内核级内存读写工具，可突破驱动保护，强制读写任意应用层进程内存数据。 A free kernel level memory reading and writing tool, which can break through driver protection and force reading and writing memory data of any application layer process.

Cheat Kernel Injector Support all windows

A mutation based user mode (ring3) dumb in-memory Windows Kernel (IOCTL) Fuzzer/Logger. This script attach it self to any given process and hooks DeviceIoControl!Kernel32 API and try to log or fuzz all I/O Control code I/O Buffer pointer, I/O buffer length that process sends to any Kernel driver.

An environment and set of utilities aimed at making kernel hacking simple and accessible

Some usefull info when reverse engineering Kernel Mode Anti-Cheat

capcom-like executor for any physmem driver

Write Linux kernel drivers from scratch and hacking