Windows paravirtualized drivers for QEMU\KVM

EDR Lab for Experimentation Purposes

Writing & Making Operating System and Kernel parts so simple like Hello World Programs, Starting from writing Bootloaders, Hello World Kernel, GDT, IDT, Terminal, Keyboard/Mouse, Memory Manager, HDD ATA R/W, VGA/VESA Graphics

protector & obfuscator & code virtualizer

Linux kernel driver for Wacom devices

A basic Direct Kernel Object Manipulation rootkit that removes a process from the EPROCESS list, hiding it from the Task Manager

kernel mode anti cheat

Sanctum is an experimental proof-of-concept EDR, designed to detect modern malware techniques, above and beyond the capabilities of antivirus. Built in Rust.

C++ STL in the Windows Kernel with C++ Exception Support

致敬锐速 - 记住要猛哦～

The goal of the tool is to monitor requests received by selected device objects or kernel drivers. The tool is quite similar to IrpTracker but has several enhancements. It supports 64-bit versions of Windows (no inline hooks are used, only moodifications to driver object structures are performed) and monitors IRP, FastIo, AddDevice, DriverUnload…

Simple Intel CPU processor tracing on Linux

This repository is a journey through Operating System concepts, with practical implementations in C. Each day focuses on a specific topic, providing theoretical understanding and hands-on coding experience.

DR.CHECKER : A Soundy Vulnerability Detection Tool for Linux Kernel Drivers

CMake module for building drivers with Windows Development Kit (WDK)

DragonBurn is CS2(Counter-Strike 2 cheat) kernel-mode read-only external cheat. Undetected by all anti-cheats except Faceit.

RedSails is a Python based post-exploitation project aimed at bypassing host based security monitoring and logging. DerbyCon 2017 Talk: https://www.youtube.com/watch?v=Ul8uPvlOsug

High-performance research framework for sub-tick input synchronization and spatial entity telemetry analysis in tactical simulation environments.

A curated compilation of extensive resources dedicated to bootkit and rootkit development.

GhostHardware (2026) — Universal HWID Management Tool for Windows 10/11. Features Kernel-Level Identity Randomization for Disk, BIOS, MAC, and GPU. Built-in Cleaner for Fortnite, Valorant (Vanguard), and EAC/BE protected games. Professional Privacy & Security Framework.