Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

Elixir

Ruby

Go

Assembly

C++

C

Erlang

HTML

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

MATLAB

Perl

Erlang

TypeScript

Crystal

F#

Python

Java

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇸🇳 Senegal

🇲🇩 Moldova

🇪🇸 Spain

🇸🇦 Saudi Arabia

🇹🇩 Chad

🇲🇰 North Macedonia

🇲🇹 Malta

🇵🇸 Palestine

All Countries Compare Countries

VollRagm/KernelSharp

Stars
178
Rank 214,044 (Top 5 %)
Language
C#
License
MIT License
Created almost 3 years ago
Updated over 2 years ago

VollRagm/KernelSharp

VollRagm

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

C# Kernel Mode Driver example using NativeAOT

KernelSharp

This is an example of how to use NativeAOT to compile C# code to a Windows Kernel Mode driver. This repository contains parts of https://github.com/ZeroLP/ZeroKernel.

If you want to see an example of a full memory R/W Driver using this, check out my repo https://github.com/VollRagm/KernelBypassSharp.

Compiling

Open the build.bat and fix the file paths. ILCPATH is located at C:\Users\username\.nuget\packages\runtime.win-x64.microsoft.dotnet.ilcompiler\7.0.0-alpha.1.21430.2\tools, ntoskrnl.lib is located in the WDK install path. Run x64 Native Tools Command Prompt for VS 2019, cd into the project directory and run build.bat. You can load the driver or map it with kdmapper.

Creating a project

Follow the Quick start guide to create a new native project. After that simply edit the project file itself and add all properties from the project in this repository. After including WDK.cs and the Runtime folder in your project you will be able to compile it.

Features

Call any kernel export
Convert C# strings to multibyte characters
Reading cr3

Limitations

No support for variadic arguments
No managed multibyte character string type, conversion is required
The native compiler misplaces globally declared strings wrongly, causing a bluescreen when referenced

KernelBypassSharp

C# Kernel Mode Driver to read and write memory in protected processes

lpmapper

A mapper that maps shellcode into loaded large page drivers

PTView

Browse Page Tables on Windows (Page Table Viewer)

ShellcodeBakery

A simple tool to assemble shellcode ready to be copy-pasted into code

NalFix

Fixes the "Device\Nal is already in use" error on kdmapper.

apphost-extract

Extracts the files embedded inside of a .NET AppHost.

NoEQU8

Inserts your process into EQU8's Trusted process list allowing for the process to open a handle. EQU8 is used by Totally Accurate Battlegrounds.

DiscordDbg

Application to route DbgView 4.90 output to a Discord bot.

vollragm.github.io

eratosthenes-asm

Sieve of Eratosthenes written in ASM