Results for "hvci"

Claude Code Claude Desktop GitHub Copilot Cursor Windsurf Cline Zed JetBrains

📄SKILL.md 🤖CLAUDE.md ⚡Claude Commands 📐.cursorrules 📐Cursor Rules 🕹️AGENTS.md 🧬codex.md 🏄.windsurfrules 🔧.clinerules 🧑‍✈️Copilot Instructions

All Development Operations Data Product Marketing Customer Design Sales

19 skills found

can1357 / ByePg

904

Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.

universal

exploitkernelpatchguard+1

Updated 4d ago

Cr4sh / KernelForge

490

A library to develop kernel level Windows payloads for post HVCI era

universal

exploithvcihypervisor+5

Updated 1d ago

hakaioffsec / CVE 2024 21338

317

Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.

universal

Updated 3d ago

zer0condition / ZeroHVCI

263

Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling without admin permissions or kernel drivers.

universal

Updated 8h ago

Cr4sh / Fwexpl

260

PC firmware exploitation tool and library

universal

exploitfirmwareframework+9

Updated 1mo ago

wesmar / Kvc

196

KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulation for LSASS memory dumping on modern Windows with HVCI/VBS.

universal

bypass-dse-load-unsigned-driver-windows11disable-windows-defender-tamper-protectiondriver-signature-enforcement-bypass-hvci-windows+10

Updated 9h ago

DErDYAST1R / NmiCallbackBlocker

170

Kernel Level NMI Callback Blocker

universal

beblockerbypass+12

Updated 1d ago

zer0condition / BusterCall

109

"Bypassing" HVCI via donor PFN swaps to modify read-only code pages. Call chained kernel functions (kCET and SLAT support), and more.

universal

hvcihyper-vslat+1

Updated 3d ago

GetRektBoy724 / Warbird Research

Find out how to bypass HVCI (or not). My own research on Microsoft Warbird (specifically in clipsp.sys)

universal

microsoft-warbirdwarbird

Updated 22d ago

worawit / Malk

Demonstrate calling a kernel function and handle process creation callback against HVCI

universal

hvciwindows

Updated 11d ago

ghostbyt3 / BYOVDFinder

Identifies LOLDrivers that are not blocked by the active HVCI policy — ideal for BYOVD scenarios.

universal

Updated 3d ago

trailofbits / HVCI Loldrivers Check

No description available

universal

Updated 1mo ago

pwnfuzz / Byovd Watchdog

Identifies LOLDrivers that are not blocked by the active HVCI policy — ideal for BYOVD scenarios.

universal

Updated 1mo ago

unkvolism / Solemn

Solemn is a lightweight command-line tool for Windows that automates adding drivers to the HVCI (HvciDisallowedImages) custom blocklist

universal

hypervisorred-teamwindows

Updated 2mo ago

tandasat / Recon2024 Demo

Provides commands to read from and write to arbitrary kernel-mode memory for users with the Administrator privilege. HVCI compatible. No test signing mode is required.

universal

Updated 9d ago

K3V1991 / How To Disable VBS HVCI

How to disable VBS/HVCI to increase Performance in Windows-11

universal

disablehow-tohvci+12

Updated 5mo ago

KeServiceDescriptorTable / Syscall Hook

windows 10 & 11 patchguard & hvci compatible syscall hook

universal

hvcikernelmicrosoft+4

Updated 4d ago

Zombie-Kaiser / CVE 2024 21338 X64 Build

Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.

universal

Updated 1y ago

xvalegendary / HVCIPwned

CVE-2024-35250 demonstrates that HVCI is not a defense against data-only kernel exploits. As long as a driver bug provides an arbitrary R/W primitive, token swap remains a universal SYSTEM elevation technique — no code execution required.

universal

Updated 16d ago