MortenSchenk / tagWnd-Hardening-Bypass
Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
☆26Updated 7 years ago
Related projects ⓘ
Alternatives and complementary repositories for tagWnd-Hardening-Bypass
- ☆33Updated 7 years ago
- ☆46Updated 7 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆34Updated 6 years ago
- My conference presentations and publications☆26Updated 2 years ago
- Kernel Shellcode to add all privileges in token☆13Updated 7 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆58Updated 8 years ago
- ☆33Updated 3 years ago
- ☆28Updated 7 years ago
- Kernel-mode file scanner☆17Updated 6 years ago
- Slides of 44Con 2018☆21Updated 6 years ago
- ☆44Updated 4 years ago
- IOCTL-Flooder is a verbose tool designed to help with Windows driver fuzzing by brute forcing IOCTLs on loaded drivers. GetLastError is u…☆10Updated 6 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆39Updated 8 years ago
- Public repository for HEVD exploits☆20Updated 6 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆21Updated 7 years ago
- Windbg extension that allows you analyze Control Flow Guard map☆36Updated 3 years ago
- Import debugging traces from WinDBG into IDA. Color the graph, fill in the value of all the operands, etc.☆25Updated 11 years ago
- Experimental Windows .text section Patch Detector☆20Updated 9 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.☆24Updated 6 years ago
- ☆20Updated 3 years ago
- A new binary injection technique, can easily go through any #CIG protected process and slip through all possible defenses without any inj…☆18Updated 6 years ago
- ☆10Updated 2 years ago
- An IDA Pro script for creating a clearer idb for nymaim malware☆10Updated 6 years ago
- Internet Explorer Exploit with CFG bypass for Windows 10☆53Updated 7 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆45Updated 6 years ago
- User-mode hook bypassing method☆32Updated 8 years ago
- drvtriks kernel driver for Windows 7 SP1 and 8.1 x64, that tricks around in your system.☆31Updated 7 years ago
- Old exploits and code for my self-referencing PML4 technique (2014)☆30Updated 9 years ago