SpiralBL0CK / CVE-2024-40431-CVE-2022-25479-EOP-CHAIN
CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)
☆43Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for CVE-2024-40431-CVE-2022-25479-EOP-CHAIN
- A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class☆24Updated last year
- Analysis of the vulnerability☆46Updated 9 months ago
- ☆27Updated 11 months ago
- Proof-of-Concept for CVE-2024-26218☆47Updated 6 months ago
- ☆27Updated 4 months ago
- HEVD Exploit: BufferOverflowNonPagedPoolNx on Windows 10 22H2 - Escalating from Low Integrity to SYSTEM via Aligned Chunk Confusion☆39Updated 3 months ago
- call gates as stable comunication channel for NT x86 and Linux x86_64☆30Updated last year
- ☆12Updated last year
- Windows AppLocker Driver (appid.sys) LPE☆35Updated 3 months ago
- ☆24Updated last year
- BYOVD collection☆20Updated 7 months ago
- Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits☆28Updated 2 years ago
- Windows KASLR bypass using prefetch side-channel☆68Updated 6 months ago
- LPE exploit for CVE-2023-36802☆22Updated last year
- A collection of various exploits☆25Updated last month
- LPE of CVE-2024-26230☆19Updated 2 months ago
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 2 years ago
- ☆28Updated 5 months ago
- POC of CVE-2022-21881 exploited at TianfuCup 2021 to escape Chrome Sandbox☆20Updated 2 years ago
- ☆21Updated 6 months ago
- A (quite) simple steganography algorithm to hide shellcodes within bitmap image.☆21Updated 6 months ago
- Dynamically resolve API function addresses at runtime in a secure manner.☆44Updated last month
- A work in progress BOF/COFF loader in Rust☆45Updated last year
- Enabled / Disable LSA Protection via BYOVD☆62Updated 2 years ago
- rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.☆12Updated last year
- Plantronics Desktop Hub LPE☆32Updated 5 months ago
- Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich☆13Updated 4 months ago
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated last year