笔者的在原作者池风水利用工具(以下简称工具)基础上进行二次开发,新增了全自动获取内核调试模块符号的偏移量及配置参数和不同漏洞利用方式优化等功能, 解决了不同Windows版本适配问题,工具包括适配驱动和利用程序两部分组成,实现了在Windows 10 19H1之后任意版本包括满补丁系统上的稳定利用.
☆77Dec 31, 2021Updated 4 years ago
Alternatives and similar repositories for poolfengshui
Users that are interested in poolfengshui are comparing it to the libraries listed below
Sorting:
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆215Jul 2, 2020Updated 5 years ago
- ☆41Jul 9, 2020Updated 5 years ago
- Security research helper for CLFS drivers☆16Sep 5, 2024Updated last year
- Helper script for Windows kernel debugging with IDA Pro on native Bochs debugger (including PDB symbols)☆62Aug 11, 2023Updated 2 years ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆21Jan 25, 2022Updated 4 years ago
- Simple library to spray the Windows Kernel Pool☆110Jan 6, 2020Updated 6 years ago
- ☆130Aug 23, 2022Updated 3 years ago
- pocs & exploit for CVE-2023-24871 (rce + lpe)☆50Jul 17, 2024Updated last year
- ☆23Nov 2, 2021Updated 4 years ago
- 从admin冲到TrustedInstaller☆17Feb 3, 2023Updated 3 years ago
- Beacon.dll reverse☆141Sep 5, 2021Updated 4 years ago
- Win7内核私有符号结构转储☆70Sep 3, 2021Updated 4 years ago
- Kernel driver to fuzz Hyper-V hypercalls☆136Feb 15, 2019Updated 7 years ago
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆250Jul 5, 2022Updated 3 years ago
- Browser Fuzz Summarize / 浏览器模糊测试综述☆142Oct 4, 2020Updated 5 years ago
- ☆478Mar 31, 2018Updated 7 years ago
- ☆36Jun 14, 2021Updated 4 years ago
- UAC_wenpon☆49Nov 25, 2021Updated 4 years ago
- Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查☆98Mar 30, 2023Updated 2 years ago
- AppContainerBypass☆21Apr 4, 2021Updated 4 years ago
- Dump PDB Symbols including support for Bochs Debugging Format (with wine support)☆14Aug 11, 2023Updated 2 years ago
- Network monitor for Linux☆13Aug 11, 2019Updated 6 years ago
- Corpus of public v8 vulnerability PoCs.☆224Jun 5, 2021Updated 4 years ago
- Some CVE resources☆27Nov 23, 2019Updated 6 years ago
- Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…☆258Sep 1, 2022Updated 3 years ago
- 过去写的一些Windows安全研究相关代码☆135Feb 2, 2019Updated 7 years ago
- Remove WPP calls from hexrays decompiled code☆56Jan 31, 2026Updated last month
- 句柄提权 无视反作弊读写游戏内存 用于分析游戏结构工具☆150Aug 29, 2021Updated 4 years ago
- Web user interface and service agent for the monitoring and remote management of WinAFL.☆63Feb 24, 2026Updated last week
- Dump of win32k POCs for bugs I've found☆380Mar 6, 2022Updated 3 years ago
- 研究和移除各种内核回调,在anti anti cheat的路上越走越远☆183Aug 26, 2022Updated 3 years ago
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆99Jul 7, 2020Updated 5 years ago
- CVE-2020-1066-EXP支持Windows 7和Windows Server 2008 R2操作系统☆187Jun 17, 2020Updated 5 years ago
- A collection of cpuid instruction implementations for anti-vm purposes.☆10Oct 5, 2023Updated 2 years ago
- Unofficial Common Log File System (CLFS) Documentation☆187Oct 5, 2021Updated 4 years ago
- Code Property Graph (CPG) frontend for binary applications and libraries.☆95Oct 28, 2021Updated 4 years ago
- ☆91Jun 29, 2021Updated 4 years ago
- Library and tools to access the Common Log File System (CLFS)☆25Dec 4, 2025Updated 3 months ago
- 可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。☆109Sep 1, 2022Updated 3 years ago