fortra / CVE-2022-37969
Windows LPE exploit for CVE-2022-37969
☆126Updated last year
Related projects: ⓘ
- Exploit for CVE-2023-29360 targeting MSKSSRV.SYS driver☆136Updated 11 months ago
- LPE exploit for CVE-2023-36802☆21Updated 11 months ago
- Interceptor is a kernel driver focused on tampering with EDR/AV solutions in kernel space☆120Updated last year
- Load static-compiled PE from remote server.☆56Updated 2 years ago
- Lenovo Diagnostics Driver EoP - Arbitrary R/W☆168Updated last year
- Small PoC of using a Microsoft signed executable as a lolbin.☆131Updated last year
- ☆132Updated last month
- ☆128Updated 8 months ago
- ☆161Updated 2 years ago
- A PoC implementation for dynamically masking call stacks with timers.☆244Updated last year
- ☆117Updated this week
- CreateRemoteThread: how to pass multiple parameters to the remote thread function without shellcode.☆126Updated 9 months ago
- CVE-2022-42046 Proof of Concept of wfshbr64.sys local privilege escalation via DKOM☆160Updated last year
- PoC: Rebuild A New Path Back to the Heaven's Gate (HITB 2021)☆100Updated 3 years ago
- Learnings about windows Internals☆87Updated 10 months ago
- Files for http://blog.deniable.org/posts/windows-callbacks/☆67Updated 2 years ago
- A kernel vulnerability used to achieve arbitrary read-write on Windows prior to July 2022☆103Updated last year
- Walks the CFG bitmap to find previously executable but currently hidden shellcode regions☆98Updated last year
- Exploitation of echo_driver.sys☆165Updated last year
- This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret …☆227Updated last year
- Minifilter Callback Patching Proof-of-Concept☆59Updated last year
- LPE exploit for CVE-2023-36802☆156Updated 11 months ago
- Proof-of-Concept for CVE-2024-21345☆70Updated 4 months ago
- Repo with different exploits & PoCs☆56Updated this week
- Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR …☆145Updated last month
- ☆97Updated last year
- ☆81Updated 2 years ago
- XOR decrypting shellcode using the GPU with OpenCL.☆90Updated last year
- GhostWriting Injection Technique.☆162Updated 6 years ago
- Uses Threat-Intelligence ETW events to identify shellcode regions being hidden by fluctuating memory protections☆93Updated last year