tandasat / CVE-2023-36427
Report and exploit of CVE-2023-36427
☆87Updated 11 months ago
Related projects ⓘ
Alternatives and complementary repositories for CVE-2023-36427
- Windows KASLR bypass using prefetch side-channel☆68Updated 6 months ago
- Report and exploit of CVE-2024-21305.☆30Updated 9 months ago
- Analysis of the vulnerability☆46Updated 9 months ago
- Finding Truth in the Shadows☆84Updated last year
- PyKD DLLs for x86 and x64 platforms☆14Updated last year
- ☆131Updated last year
- A journal for $6,000 Riot Vanguard bounty.☆57Updated last year
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆111Updated this week
- ☆30Updated last year
- LPE exploit for CVE-2023-36802☆22Updated last year
- Different tools for Microsoft Hyper-V researching☆46Updated 5 months ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆48Updated last year
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆84Updated 2 years ago
- Proof-of-Concept for CVE-2024-26218☆47Updated 6 months ago
- call gates as stable comunication channel for NT x86 and Linux x86_64☆30Updated last year
- ☆65Updated last year
- ☆80Updated 5 months ago
- ☆131Updated 9 months ago
- ☆59Updated 2 years ago
- HEVD Exploit: BufferOverflowNonPagedPoolNx on Windows 10 22H2 - Escalating from Low Integrity to SYSTEM via Aligned Chunk Confusion☆39Updated 3 months ago
- The Windbg extension that implements commands helpful to study Hyper-V on Intel processors.☆129Updated 3 weeks ago
- Minifilter Callback Patching Proof-of-Concept☆61Updated 2 years ago
- PoC exploit for HP Hardware Diagnostic's EtdSupp driver☆50Updated last year
- Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book☆101Updated 4 months ago
- A KISS Rust crate to parse Windows kernel crash-dumps created by Windows & its debugger.☆32Updated 2 months ago
- Windows LPE exploit for CVE-2022-37969☆130Updated last year
- Enabled / Disable LSA Protection via BYOVD☆62Updated 2 years ago
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆92Updated last year
- arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system☆53Updated 2 years ago