Kernel Exploitation Framework

Kernel Pack v1.0
Customizable rootkit with a graphical C2 interface.

Buy now Video
Scroll Down

Kernel Pack
Framework

1-year license

950

Updates + online training
+ technical support

  • ✖ Discounted price
  • ✖ All tools suite
  • ✔ Thread hiding and unhiding
  • ✔ Process elevation
  • ✔ Process protection (anti-kill and dumping)
  • ✔ Process signature (PP/PPL) modification
  • ✔ NtCreateThreadEx
  • ✔ Querying kernel callbacks
  • ✔ Process and thread creation routines
  • ✔ Image loading routines
  • ✔ Registry callbacks
  • ✔ Removing and restoring kernel callbacks
  • ✔ Windows events tampering
  • ✔ Process hiding
  • ✔ Credential Dumping
  • ✔ DLL Injection
  • ✔ Persistence methods.
  • ✔ File protection (anti-deletion and overwriting)
  • ✔ Registry keys and values protection (anti-deletion and overwriting)
  • ✔ Querying currently protected processes, threads, files, hidden ports, registry keys and values
  • ✔ Technical support
cards
Powered by paypal

Kernel Pack
+ Exploit Pack

1-year licenses

1800

Updates + online training
+ technical support

  • ✔ Discounted price
  • ✔ Kernel Pack + Exploit Pack
  • ✔ Thread hiding and unhiding
  • ✔ Process elevation
  • ✔ Process protection (anti-kill and dumping)
  • ✔ Process signature (PP/PPL) modification
  • ✔ NtCreateThreadEx
  • ✔ Querying kernel callbacks
  • ✔ Process and thread creation routines
  • ✔ Image loading routines
  • ✔ Registry callbacks
  • ✔ Removing and restoring kernel callbacks
  • ✔ Windows events tampering
  • ✔ Process hiding
  • ✔ Credential Dumping
  • ✔ DLL Injection
  • ✔ Persistence methods.
  • ✔ File protection (anti-deletion and overwriting)
  • ✔ Registry keys and values protection (anti-deletion and overwriting)
  • ✔ Querying currently protected processes, threads, files, hidden ports, registry keys and values
  • ✔ Technical support
cards
Powered by paypal

Kernel Pack
+ Exploit Pack
+ Control Pack
1-year licenses

2700

Updates + online training
+ technical support

  • ✔ Discounted price
  • ✔ All tools suite
  • ✔ Thread hiding and unhiding
  • ✔ Process elevation
  • ✔ Process protection (anti-kill and dumping)
  • ✔ Process signature (PP/PPL) modification
  • ✔ NtCreateThreadEx
  • ✔ Querying kernel callbacks
  • ✔ Process and thread creation routines
  • ✔ Image loading routines
  • ✔ Registry callbacks
  • ✔ Removing and restoring kernel callbacks
  • ✔ Windows events tampering
  • ✔ Process hiding
  • ✔ Credential Dumping
  • ✔ DLL Injection
  • ✔ Persistence methods.
  • ✔ File protection (anti-deletion and overwriting)
  • ✔ Registry keys and values protection (anti-deletion and overwriting)
  • ✔ Querying currently protected processes, threads, files, hidden ports, registry keys and values
  • ✔ Technical support
cards
Powered by paypal

Do you need a quote or multiple licenses for your company? Contact us via email

⦁ What's also included: A full license of Kernel Pack includes access to monthly updates and technical support.
⦁ Delivery method: Personal keys are delivered via email within 24 hours of purchase and are linked to the email address used during the purchase.
⦁ All licenses already linked to the purchasing email address cannot be modified or transferred.
⦁ Once the order is confirmed and the product is digitally delivered, refunds are not issued for our products.
⦁ Technical support and related services for lifetime licenses only, are valid for a period of two years from the date of purchase.

App Screenshots

Get to the real low-level incognito.

Kernel Pack is a multifunctional rootkit with an advanced C2 (command & control) that helps you configure, interact, set up and deploy your own rootkits during Penetration Tests and Red Team Exercises. Get silent with kernel-level process hiding, disable event traces, bypass AMSI and Patchguard, escalate to PPL and conquer. To get to the real low-level incognito, get Kernel Pack.

App Screenshots



Rootkit features from the Kernel

sample-image
Interact with your Kernel rootkit (driver) using IOCTLs and get access to low-level functionalities such as process elevation, injection, hiding and protection, disable Antivirus and EDRs, get persistence, file protection, credentials dumping and more.


Real-time interaction with your Rootkit

sample-image
Get direct reverse shell communication from your rootkit at user level and with kernel-level access. Perform keylogging, capture screenshots, execute commands, and more, all while remaining hidden from the operating system, maintaining full control over your target.


Easy to use with a graphical interface

sample-image
Rootkit and kernel-level development has always been complex and challenging, but we changed that with Kernel Pack. We've made it easy for the end-user with a graphical interface and a simple, step-by-step wizard to customize and build their own rootkit.


Technical support and Training

sample-image
Do you need help? Your license includes technical support and consultation during your next project. We are here to help you achieve results and improve your Red Teaming capabilities. Reach us by email, phone, chat or tickets.



Trusted by technical teams at companies of all sizes around the globe

Author image


What our clients say about Kernel Pack:

"I can stay undetected while moving through targets. The kernel-level process hiding in Kernel Pack makes evasion effortless." Sander F. - Senior Red Team / Exploit writer