sensepost/gdi-palettes-exp external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

sensepost/gdi-palettes-exp

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/sensepost/gdi-palettes-exp)

Close

sensepost / gdi-palettes-expView on GitHubMore

• External links
• Readme badge

DC25 5A1F - Demystifying Windows Kernel Exploitation by Abusing GDI Objects

☆147Jul 30, 2017Updated 8 years ago

Alternatives and similar repositories for gdi-palettes-exp

Users that are interested in gdi-palettes-exp are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• cbayet / PoolSprayer

  View on GitHub
  Simple library to spray the Windows Kernel Pool
  ☆110Jan 6, 2020Updated 6 years ago
• progmboy / cansecwest2017

  View on GitHub
  ☆63Apr 13, 2017Updated 8 years ago
• leeqwind / HolicPOC

  View on GitHub
  POC and exploitation of vulnerabilities
  ☆91Mar 22, 2022Updated 4 years ago
• MortenSchenk / BHUSA2017

  View on GitHub
  Content from presentation at BHUSA 2017
  ☆179Jul 27, 2017Updated 8 years ago
• siberas / CVE-2016-3309_Reloaded

  View on GitHub
  Exploits for the win32kfull!bFill vulnerability on Win10 x64 RS2 using Bitmap or Palette techniques
  ☆54Oct 6, 2017Updated 8 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• cbayet / Exploit-CVE-2017-6008

  View on GitHub
  Exploits for CVE-2017-6008, a kernel pool buffer overflow leading to privilege escalation.
  ☆120Nov 6, 2024Updated last year
• sensepost / ms16-098

  View on GitHub
  Windows 8.1 x64 Exploit for MS16-098 RNGOBJ_Integer_Overflow
  ☆92Apr 20, 2017Updated 8 years ago
• yuvatia / Win10GdiExploitation

  View on GitHub
  Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.
  ☆24Jan 23, 2018Updated 8 years ago
• niklasb / elgoog

  View on GitHub
  elgoog/searchme challenge from 34C3 CTF / WCTF 2018: sources & exploit
  ☆68Jul 9, 2018Updated 7 years ago
• MortenSchenk / tagWnd-Hardening-Bypass

  View on GitHub
  Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
  ☆32Mar 22, 2017Updated 9 years ago
• RanchoIce / 44Con2018

  View on GitHub
  Slides of 44Con 2018
  ☆23Oct 11, 2018Updated 7 years ago
• bee13oy / AV_Kernel_Vulns

  View on GitHub
  Pocs for Antivirus Software‘s Kernel Vulnerabilities
  ☆266Jul 6, 2017Updated 8 years ago
• progmboy / kernel_vul_poc

  View on GitHub
  ☆31Jan 4, 2018Updated 8 years ago
• helpsystems / GDIObjDump

  View on GitHub
  ☆35Sep 18, 2015Updated 10 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• blaquee / DbgFlashVul

  View on GitHub
  DbgFlashVul
  ☆12Sep 8, 2015Updated 10 years ago
• fishstiqz / poolinfo

  View on GitHub
  kernel pool windbg extension
  ☆83Jul 23, 2015Updated 10 years ago
• theori-io / jscript9-typedarray

  View on GitHub
  Proof-of-Concept exploit for jscript9 bug (MS16-063)
  ☆50Jun 27, 2016Updated 9 years ago
• panoramixor / GDIObjDump

  View on GitHub
  ☆29Sep 18, 2015Updated 10 years ago
• k0keoyo / CVE-2015-2546-Exploit

  View on GitHub
  ☆22May 25, 2017Updated 8 years ago
• FSecureLABS / win_driver_plugin

  View on GitHub
  A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.
  ☆438Aug 22, 2018Updated 7 years ago
• sin5678 / wow64hook

  View on GitHub
  wow64 syscall filter
  ☆13Nov 12, 2014Updated 11 years ago
• MortenSchenk / RtlCaptureContext-CFG-Bypass

  View on GitHub
  Internet Explorer Exploit with CFG bypass for Windows 10
  ☆60Jan 11, 2017Updated 9 years ago
• IOActive / I-know-where-your-page-lives

  View on GitHub
  I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016
  ☆172Dec 7, 2016Updated 9 years ago
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• Rootkitsmm-zz / Win32k-Fuzzer

  View on GitHub
  Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )
  ☆138Nov 28, 2015Updated 10 years ago
• sam-b / windows_kernel_address_leaks

  View on GitHub
  Examples of leaking Kernel Mode information from User Mode on Windows
  ☆635Jul 7, 2017Updated 8 years ago
• JeremyFetiveau / Exploits

  View on GitHub
  Old exploits and code for my self-referencing PML4 technique (2014)
  ☆32May 8, 2015Updated 10 years ago
• gdabah / win32k-bugs

  View on GitHub
  Dump of win32k POCs for bugs I've found
  ☆380Mar 6, 2022Updated 4 years ago
• synacktiv / Windows-kernel-SegmentHeap-Aligned-Chunk-Confusion

  View on GitHub
  PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap
  ☆213Jul 2, 2020Updated 5 years ago
• theevilbit / kex

  View on GitHub
  ☆91Jul 31, 2019Updated 6 years ago
• sam-b / windows_kernel_resources

  View on GitHub
  Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits
  ☆415Jan 2, 2020Updated 6 years ago
• MortenSchenk / Token-Stealing-Shellcode

  View on GitHub
  ☆53Feb 27, 2017Updated 9 years ago
• james0x40 / CVE-2020-0624

  View on GitHub
  win32k use-after-free poc
  ☆71Apr 22, 2020Updated 5 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• homjxi0e / PoC-ActiveX

  View on GitHub
  PoC ActiveX SVG Document Execution
  ☆21Nov 8, 2018Updated 7 years ago
• FSecureLABS / CVE-2016-7255

  View on GitHub
  An exploit for CVE-2016-7255 on Windows 7/8/8.1/10(pre-anniversary) 64 bit
  ☆82Mar 9, 2017Updated 9 years ago
• sam-b / windbg-plugins

  View on GitHub
  Any useful windbg plugins I've written.
  ☆117Apr 10, 2018Updated 7 years ago
• progmboy / win32kext

  View on GitHub
  windbg plugin for win32k debugging
  ☆75Oct 14, 2019Updated 6 years ago
• vp777 / Windows-Non-Paged-Pool-Overflow-Exploitation

  View on GitHub
  Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…
  ☆262Sep 1, 2022Updated 3 years ago
• jvazquez-r7 / ht_win32k_info_leak

  View on GitHub
  ☆10Aug 13, 2015Updated 10 years ago
• hidd3ncod3s / runpedmp

  View on GitHub
  RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the …
  ☆10Jul 1, 2015Updated 10 years ago