Offensive-Panda / NT-AUTHORITY-SYSTEM-CONTEXT-RTCORELinks
This exploit rebuilds and exploit the CVE-2019-16098 which is in driver Micro-Star MSI Afterburner 4.6.2.15658 (aka RTCore64.sys and RTCore32.sys) allows any authenticated user to read and write to arbitrary memory, I/O ports, and MSRs. Instead of hardcoded base address of Ntoskrnl.exe, I calculated it dynamically and recalulated the fields offs…
☆30Updated last year
Alternatives and similar repositories for NT-AUTHORITY-SYSTEM-CONTEXT-RTCORE
Users that are interested in NT-AUTHORITY-SYSTEM-CONTEXT-RTCORE are comparing it to the libraries listed below
Sorting:
- KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulatio…☆160Updated 2 weeks ago
- Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver☆53Updated 2 years ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆81Updated 7 months ago
- https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.☆33Updated last year
- Exploiting the KsecDD Windows driver through Server Silos☆76Updated last year
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆73Updated 10 months ago
- Obfuscating function calls using Vectored Exception Handlers by redirecting execution through exception-based control flow. Uses byte swa…☆114Updated 3 months ago
- Executing Kernel Routines via Syscall Table Hijack (Kernel Code Execution)☆57Updated 7 months ago
- Proof-of-concept kernel driver that hijacks the Windows kernel extension table mechanism to preserve process notify callbacks even when a…☆92Updated 7 months ago
- Reimplementation of the KExecDD DSE bypass technique.☆58Updated last year
- Next gen process injection technique☆54Updated 5 years ago
- kernel-mode DLL Injector☆125Updated 9 months ago
- WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.☆43Updated last year
- PoC for popping a system shell against the LnvMSRIO.sys driver☆118Updated 4 months ago
- Evade behavioral analysis by executing malicious code within trusted Microsoft call stacks, patchless hooking library IAT/EAT.☆129Updated 2 months ago
- Fast covert timing channel communication for inter-process and inter-processor communication on Windows systems.☆67Updated 2 months ago
- ☆42Updated 11 months ago
- Scan for potentially vulnerable drivers☆94Updated 3 years ago
- Small PoC of using a Microsoft signed executable as a lolbin.☆140Updated 2 years ago
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆115Updated 2 years ago
- Research into removing strings & API call references at compile-time (Anti-Analysis)☆28Updated last year
- A serie of exploits targeting eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W☆116Updated 3 months ago
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆45Updated last week
- ☆36Updated last year
- List the ETW provider(s) in the registration table of a process.☆80Updated 2 years ago
- Windows x64 kernel mode rootkit process hollowing POC.☆189Updated 2 years ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Updated 10 months ago
- An example of how to use Microsoft Windows Warbird technology☆91Updated 2 years ago
- Various methods of executing shellcode☆74Updated 2 years ago
- This repo contains PoCs for vulnerable Windows drivers.☆126Updated last month