Popular repositories Loading

1. kvc kvc Public

   KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulation for LSASS memory dumping on modern Windows with HVCI/VBS.

   C++ 257 48

2. KernelResearchKit KernelResearchKit Public

   Windows 11 kernel research framework demonstrating DSE bypass on Windows 11 25H2 through boot-time execution. Loads unsigned drivers by surgically patching SeCiCallbacks via native subsystem. Inclu…

   C 124 22

3. Chess Chess Public

   Lightweight chess engine written in modern C++20 with pure WinAPI. No dependencies, runs even in Windows Recovery Environment.

   C++ 38 1

4. CmdT CmdT Public

   The world's smallest TrustedInstaller launcher ~30KB of pure x64/x86 assembly. Hybrid CLI/GUI in one binary. Full NT privilege elevation (34 privileges), token caching, .lnk resolution via COM, dra…

   Assembly 33 6

5. Watermark_Remover Watermark_Remover Public

   Windows watermark remover using IAT hooking and COM CLSID proxy injection. Patches shell32.dll via TrustedInstaller to intercept ExtTextOutW, LoadStringW, DrawTextWithGlow and more (removes evaluat…

   Assembly 30 9

6. WinDefCtl WinDefCtl Public

   Command-line utility to completely halt, disable, and neutralize Windows Defender and Tamper Protection. Bypasses forced UAC and GUI requirements in Windows 11 (supports 26H1). Features invisible e…

   C++ 29 7