The Kernel Exploitation Framework, or KEF, is an advanced Windows offensive security tool developed by WebSec.
It provides authorized operators with Windows kernel-mode capabilities for privilege escalation, process and token manipulation, kernel callback management, ETW testing, WFP callout inspection, credential-protection testing, and other advanced security operations.
KEF is intended for authorized red team engagements, government operations, law enforcement, intelligence work, security research, and defensive control validation.



