笔者的在原作者池风水利用工具(以下简称工具)基础上进行二次开发,新增了全自动获取内核调试模块符号的偏移量及配置参数和不同漏洞利用方式优化等功能, 解决了不同Windows版本适配问题,工具包括适配驱动和利用程序两部分组成,实现了在Windows 10 19H1之后任意版本包括满补丁系统上的稳定利用.
☆77Dec 31, 2021Updated 4 years ago
Alternatives and similar repositories for poolfengshui
Users that are interested in poolfengshui are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆214Jul 2, 2020Updated 5 years ago
- ☆41Jul 9, 2020Updated 5 years ago
- Security research helper for CLFS drivers☆16Sep 5, 2024Updated last year
- AppContainerBypass☆21Apr 4, 2021Updated 4 years ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆21Jan 25, 2022Updated 4 years ago
- Simple library to spray the Windows Kernel Pool☆110Jan 6, 2020Updated 6 years ago
- Helper script for Windows kernel debugging with IDA Pro on native Bochs debugger (including PDB symbols)☆62Aug 11, 2023Updated 2 years ago
- Library and tools to access the Common Log File System (CLFS)☆25Dec 4, 2025Updated 3 months ago
- Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…☆260Sep 1, 2022Updated 3 years ago
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆250Jul 5, 2022Updated 3 years ago
- pocs & exploit for CVE-2023-24871 (rce + lpe)☆50Jul 17, 2024Updated last year
- javascript extension of windbg for hacker.☆18Jun 27, 2023Updated 2 years ago
- 笔者在一款基于LLVM编译器架构的retdec开源反编译器工具的基础上,融合了klee符号执行工具,通过符号执行(Symbolic Execution)引擎动态模拟反编译后的llvm的ir(中间指令集)运行源程序的方法,插桩所有的对x86指令集的thiscall类型函数对t…☆226Apr 6, 2022Updated 3 years ago
- ☆130Aug 23, 2022Updated 3 years ago
- Kernel driver to fuzz Hyper-V hypercalls☆136Feb 15, 2019Updated 7 years ago
- 从入门到放弃的产物,学习过程中用python实现的一个单点c2基本功能☆11Mar 11, 2020Updated 6 years ago
- Win7内核私有符号结构转储☆70Sep 3, 2021Updated 4 years ago
- 研究和移除各种��内核回调,在anti anti cheat的路上越走越远☆182Aug 26, 2022Updated 3 years ago
- POC and exploitation of vulnerabilities☆91Mar 22, 2022Updated 4 years ago
- 搜集的一些kernel paper☆26Feb 19, 2020Updated 6 years ago
- ☆479Mar 31, 2018Updated 7 years ago
- ☆12Aug 31, 2022Updated 3 years ago
- ☆36Jun 14, 2021Updated 4 years ago
- ☆91Jun 29, 2021Updated 4 years ago
- Hijack NotifyRoutine for a kernelmode thread☆41Jun 4, 2022Updated 3 years ago
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆99Jul 7, 2020Updated 5 years ago
- Hook NtDeviceIoControlFile with PatchGuard☆107May 10, 2022Updated 3 years ago
- Beacon.dll reverse☆141Sep 5, 2021Updated 4 years ago
- 过去写的一些Windows安全研究相关代码☆135Feb 2, 2019Updated 7 years ago
- UAC_wenpon☆49Nov 25, 2021Updated 4 years ago
- ☆42Jun 23, 2024Updated last year
- CVE-2020-1066-EXP支持Windows 7和Windows Server 2008 R2操作系统☆187Jun 17, 2020Updated 5 years ago
- Browser Fuzz Summarize / 浏览器模糊测试综述☆142Oct 4, 2020Updated 5 years ago
- Web user interface and service agent for the monitoring and remote management of WinAFL.☆63Feb 24, 2026Updated last month
- 隐藏可执行内存☆267Apr 27, 2025Updated 10 months ago
- Windows Security Resources☆74Jan 14, 2022Updated 4 years ago
- Unofficial Common Log File System (CLFS) Documentation☆189Oct 5, 2021Updated 4 years ago
- Dump PDB Symbols including support for Bochs Debugging Format (with wine support)☆14Aug 11, 2023Updated 2 years ago
- Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查☆98Mar 30, 2023Updated 2 years ago