cbwang505 / poolfengshui
笔者的在原作者池风水利用工具(以下简称工具)基础上进行二次开发,新增了全自动获取内核调试模块符号的偏移量及配置参数和不同漏洞利用方式优化等功能, 解决了不同Windows版本适配问题,工具包括适配驱动和利用程序两部分组成,实现了在Windows 10 19H1之后任意版本包括满补丁系统上的稳定利用.
☆77Updated 3 years ago
Alternatives and similar repositories for poolfengshui:
Users that are interested in poolfengshui are comparing it to the libraries listed below
- CVE-2021-1732 Microsoft Windows 10 本地提权漏 研究及Poc/Exploit开发☆81Updated 4 years ago
- ☆23Updated 2 years ago
- 过去写的一些Windows安全研究相关代码☆136Updated 6 years ago
- Windows Security Resources☆65Updated 3 years ago
- Linux下应用层注入/hook技术实现端口复用☆1Updated 3 years ago
- ☆50Updated 2 years ago
- 沙箱测试,测评国内常见沙箱的代码与结论☆100Updated 3 years ago
- 简单安排一下 autochk.sys 这个rootkit☆71Updated 2 years ago
- Windows Etw LPE☆50Updated 3 years ago
- https://key08.com/index.php/2021/10/19/1375.html☆66Updated 2 years ago
- IDA Python script for generating Windows x86 shellcode with one click☆37Updated last year
- ☆15Updated 2 years ago
- ☆37Updated 5 years ago
- 一款linux下的安全产品目的是满足个人安全需求有SSH爆破防护和SYN攻击扫描防护功能,基于netfilter,☆19Updated last year
- Windows Defender VDM lua collections☆47Updated 2 years ago
- Windows Kernel Knowledge && Collect Resources on the wire && Nothing innovation by myself &&☆56Updated 3 months ago
- 关于intel和amd指令行为不一样这件事☆61Updated 2 years ago
- win32kbase!NtDCompositionCommitSynchronizationObject and win32kbase!NtGdiGetCertificate☆16Updated 3 years ago
- ☆91Updated 3 years ago
- CobaltStrikeDetect☆47Updated 3 years ago
- IDA7.6/IDA7.7 + Python3 下,Go 可执行文件的符号恢复脚本。已适配 Go1.2/Go1.16/Go1.18/Go1.20☆30Updated 5 months ago
- Search for information from manifests☆44Updated 6 years ago
- 大数字驱动逆向代码☆71Updated last year
- CVE-2021-22555 exploit rewritten with pipe primitive☆36Updated 2 years ago
- ☆40Updated 3 years ago
- Windows CVE主防(HIPS/HIDS)☆54Updated 3 years ago
- windwos内核研究与驱动Code☆62Updated 3 years ago
- bypass BeaconEye☆88Updated 3 years ago
- about how to make a anti-virus engine☆47Updated last week
- [windows]pe -> shellcode -> shellcodeLoader -> (pe2shellcode go on?)☆76Updated 3 years ago