Since using legit drivers to kill processes seems to be a thing 🤷♀️
Here's my crappy script to identify potential process killer drivers on LOLDrivers
Conversation
Yes almost all vulnerable driver on this can do it. However, the purpose of this script was not to find all of them but some specific ones.
It's exactly what I'm saying on the git README 🙂
1
2
I'm currently writing a blog post about the recent trend about process killer driver and how easy it is today to find and exploit some.
This tool is one of the step that will be explained on the article

