ASkyeye / CVE-2018-19320Links
Exploiting ring0 memcpy-like functionality to disable Driver Signing Enforcement (DSE)
☆20Updated 5 years ago
Alternatives and similar repositories for CVE-2018-19320
Users that are interested in CVE-2018-19320 are comparing it to the libraries listed below
Sorting:
- ☆11Updated 2 years ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆21Updated 3 years ago
- A kernel mode Windows rootkit in development.☆49Updated 3 years ago
- A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.☆38Updated 3 years ago
- Files for http://deniable.org/windows/windows-callbacks☆25Updated 4 years ago
- A PoC tool for exploiting leaked process and thread handles☆32Updated last year
- ☆26Updated 3 years ago
- ☆62Updated 3 years ago
- ☆31Updated 4 years ago
- Command like tool to print mitigation flags for running processes in a memory dump☆46Updated 4 years ago
- ☆33Updated 3 years ago
- My try to implement a virtual CPU in C☆19Updated last year
- Example for PagedOut!☆24Updated 5 years ago
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆98Updated 4 years ago
- Reports and POCs for CVE 2024-43570 and CVE-2024-43535☆24Updated 2 weeks ago
- A few examples of how to trap virtual memory access on Windows.☆31Updated 6 months ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆23Updated 5 years ago
- ☆39Updated 2 years ago
- CVE-2021-29337 - Privilege Escalation in MODAPI.sys (MSI Dragon Center)☆30Updated 3 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆31Updated 4 years ago
- Vulnerability analysis and proof of concepts☆34Updated 2 years ago
- ☆20Updated 5 months ago
- ☆70Updated 4 months ago
- LPE of CVE-2024-26230☆24Updated 9 months ago
- Enabled / Disable LSA Protection via BYOVD☆70Updated 3 years ago
- POC For CVE-2022-24483☆14Updated 3 years ago
- A compact tool for detecting AV/EDR hooks in default Windows libraries.☆31Updated 3 years ago
- A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using Instrumentation…☆31Updated last year
- Yet another Windows DLL injector.☆39Updated 3 years ago
- Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits☆29Updated 3 years ago