Runtime Hyper-V Hijacking with DDMA

Custom CTFd live scoreboard, originally made for GCTF2017 | Featured on Rawsec's http://list.rawsec.ml/ctf_platforms.html

A comprehensive ETW (Event Tracing for Windows) event generation tool designed for testing and research purposes.

memory introspection and reverse engineering hypervisor powered by leveraging Hyper-V

Binaries, drivers, PoCs and other stuff on Hydroph0bia vulnerability (CVE-2025-4275)

A stealthy anti-fingerprinting toolkit for Windows

PoC SMM-Module that manually maps another module in SMRAM

🪅 Windows User Space Emulator

Hooking Windows' exception dispatcher to protect process's PML4

Port of zentool to Windows

Admin to Kernel code execution using the KSecDD driver

Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks

SMM UEFI module and client for UMD privilege escalation

just proof of concept. hooking MmCopyMemory PG safe.

Windows OS ACPI Debugger tool with disassemble feature in C#, Kernel Driver for running ACPI Code in runtime

X86 OS development