can1357 / CVE-2018-8897Links
Arbitrary code execution with kernel privileges using CVE-2018-8897.
☆416Updated 7 years ago
Alternatives and similar repositories for CVE-2018-8897
Users that are interested in CVE-2018-8897 are comparing it to the libraries listed below
Sorting:
- Pocs for Antivirus Software‘s Kernel Vulnerabilities☆264Updated 7 years ago
- An attempt at Process Doppelgänging☆181Updated 7 years ago
- Patching ROP-encoded shellcodes into PEs☆186Updated 7 years ago
- DC25 5A1F - Demystifying Windows Kernel Exploitation by Abusing GDI Objects☆145Updated 7 years ago
- Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits☆396Updated 5 years ago
- windows syscall table from xp ~ 10 rs4☆353Updated 7 years ago
- ☆399Updated 8 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆435Updated 6 years ago
- PowerLoaderEx - Advanced Code Injection Technique for x32 / x64☆379Updated 8 years ago
- An improvement of the original reflective DLL injection technique by Stephen Fewer of Harmony Security☆330Updated 7 years ago
- ☆164Updated 7 years ago
- Hardcore corruption of my execve() vulnerability in WSL☆215Updated 7 years ago
- An extensible framework for easily writing compiler optimized position independent x86 / x64 shellcode for windows platforms.☆520Updated 5 years ago
- Content from presentation at BHUSA 2017☆180Updated 7 years ago
- ☆472Updated 7 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆300Updated 6 years ago
- my public code☆166Updated 8 years ago
- Python solutions for the HackSysTeam Extreme Vulnerable Driver☆152Updated 4 years ago
- This is a simple example and explanation of obfuscating API resolution via hashing☆235Updated 5 years ago
- Exploit for CVE-2019-9810 Firefox on Windows 64-bit.☆229Updated 5 years ago
- DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.☆364Updated 5 years ago
- ☆384Updated last year
- ☆235Updated 7 years ago
- Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).☆117Updated 6 years ago
- Have fun with the LowFragmentationHeap☆241Updated 4 years ago
- Windows Kernel Drivers fuzzer☆349Updated 8 years ago
- Windows RPC Python fuzzer☆162Updated 7 years ago
- Cross Platform Kernel Fuzzer Framework☆450Updated 6 years ago
- ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…☆224Updated 2 years ago
- Exploits for CVE-2017-6008, a kernel pool buffer overflow leading to privilege escalation.☆118Updated 7 months ago