Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CVE-2020-17087 and an off-by-one overflow
☆258Sep 1, 2022Updated 3 years ago
Alternatives and similar repositories for Windows-Non-Paged-Pool-Overflow-Exploitation
Users that are interested in Windows-Non-Paged-Pool-Overflow-Exploitation are comparing it to the libraries listed below
Sorting:
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆215Jul 2, 2020Updated 5 years ago
- An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.☆150Mar 2, 2023Updated 3 years ago
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆250Jul 5, 2022Updated 3 years ago
- Examples of leaking Kernel Mode information from User Mode on Windows☆634Jul 7, 2017Updated 8 years ago
- A library to develop kernel level Windows payloads for post HVCI era☆486May 18, 2021Updated 4 years ago
- ☆41Jul 9, 2020Updated 5 years ago
- ☆165Sep 18, 2021Updated 4 years ago
- HackSysExtremeVulnerableDriver exploits for latest Windows 10 version☆26Jan 13, 2026Updated last month
- Snapshot-based coverage-guided windows kernel fuzzer☆323Dec 16, 2021Updated 4 years ago
- Dump of win32k POCs for bugs I've found☆380Mar 6, 2022Updated 3 years ago
- ☆146Mar 29, 2025Updated 11 months ago
- Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation☆130Mar 22, 2024Updated last year
- wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kerne…☆1,726Jan 2, 2026Updated 2 months ago
- Internals information about Hyper-V☆731Dec 20, 2025Updated 2 months ago
- LPE exploit for CVE-2023-36802☆167Oct 10, 2023Updated 2 years ago
- Windows Common Log File System Driver POC☆95Dec 21, 2021Updated 4 years ago
- POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY☆227Apr 12, 2025Updated 10 months ago
- Simple library to spray the Windows Kernel Pool☆110Jan 6, 2020Updated 6 years ago
- PoC demonstrating the use of cve-2020-1034 for privilege escalation☆126Mar 16, 2021Updated 4 years ago
- Unofficial Common Log File System (CLFS) Documentation☆187Oct 5, 2021Updated 4 years ago
- A bunch of JavaScript extensions for WinDbg.☆363Nov 28, 2024Updated last year
- Knowledge base of exploit mitigations available across numerous operating systems, architectures and applications and versions.☆923May 20, 2024Updated last year
- Have fun with the LowFragmentationHeap☆254Feb 3, 2021Updated 5 years ago
- FLARE Kernel Shellcode Loader☆178May 3, 2019Updated 6 years ago
- Windows LPE exploit for CVE-2022-37969☆135Jul 11, 2023Updated 2 years ago
- ☆272Jul 10, 2023Updated 2 years ago
- A Windows kernel dump C++ parser library with Python 3 bindings.☆213Oct 5, 2025Updated 4 months ago
- Kernel Exploits☆260Jul 18, 2021Updated 4 years ago
- Exploit targeting NT kernel in 24H2 Windows Insider Preview☆151Apr 26, 2024Updated last year
- PoC: Exploit 32-bit Thread Snapshot of WOW64 to Take Over $RIP & Inject & Bypass Antivirus HIPS (HITB 2021)☆167May 27, 2021Updated 4 years ago
- Reports and POCs for CVE 2024-43570 and CVE-2024-43535☆29Jun 7, 2025Updated 8 months ago
- Security research helper for CLFS drivers☆16Sep 5, 2024Updated last year
- LPE of CVE-2024-26230☆23Sep 1, 2024Updated last year
- Research on Windows Kernel Executive Callback Objects☆316Feb 22, 2020Updated 6 years ago
- ☆82Aug 30, 2024Updated last year
- ☆85Jan 12, 2022Updated 4 years ago
- A fuzzer for full VM kernel/driver targets☆776Feb 11, 2026Updated 3 weeks ago
- The Windbg extensions to study Hyper-V on Intel and AMD processors.☆171Feb 10, 2026Updated 3 weeks ago
- ☆149Jan 25, 2024Updated 2 years ago