vp777/Windows-Non-Paged-Pool-Overflow-Exploitation external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

vp777/Windows-Non-Paged-Pool-Overflow-Exploitation

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/vp777/Windows-Non-Paged-Pool-Overflow-Exploitation)

Close

vp777 / Windows-Non-Paged-Pool-Overflow-ExploitationView on GitHubMore

• External links
• Readme badge

Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CVE-2020-17087 and an off-by-one overflow

☆262Sep 1, 2022Updated 3 years ago

Alternatives and similar repositories for Windows-Non-Paged-Pool-Overflow-Exploitation

Users that are interested in Windows-Non-Paged-Pool-Overflow-Exploitation are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• synacktiv / Windows-kernel-SegmentHeap-Aligned-Chunk-Confusion

  View on GitHub
  PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap
  ☆214Jul 2, 2020Updated 5 years ago
• yardenshafir / PoolViewer

  View on GitHub
  An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.
  ☆151Mar 2, 2023Updated 3 years ago
• vportal / HEVD

  View on GitHub
  HackSysExtremeVulnerableDriver exploits for latest Windows 10 version
  ☆26Jan 13, 2026Updated 3 months ago
• yardenshafir / IoRingReadWritePrimitive

  View on GitHub
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆256Jul 5, 2022Updated 3 years ago
• sam-b / windows_kernel_address_leaks

  View on GitHub
  Examples of leaking Kernel Mode information from User Mode on Windows
  ☆641Jul 7, 2017Updated 8 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• k0keoyo / SegmentHeapExt

  View on GitHub
  ☆41Jul 9, 2020Updated 5 years ago
• Black-Frost / windows-learning

  View on GitHub
  ☆147Mar 29, 2025Updated last year
• quarkslab / rewind

  View on GitHub
  Snapshot-based coverage-guided windows kernel fuzzer
  ☆324Dec 16, 2021Updated 4 years ago
• waleedassar / RestrictedKernelLeaks

  View on GitHub
  ☆166Sep 18, 2021Updated 4 years ago
• ionescu007 / clfs-docs

  View on GitHub
  Unofficial Common Log File System (CLFS) Documentation
  ☆189Oct 5, 2021Updated 4 years ago
• jayesther / KTM_POCS

  View on GitHub
  Reports and POCs for CVE 2024-43570 and CVE-2024-43535
  ☆30Jun 7, 2025Updated 10 months ago
• gerhart01 / Hyper-V-Internals

  View on GitHub
  Internals information about Hyper-V
  ☆736Mar 7, 2026Updated last month
• gdabah / win32k-bugs

  View on GitHub
  Dump of win32k POCs for bugs I've found
  ☆379Mar 6, 2022Updated 4 years ago
• 0vercl0k / wtf

  View on GitHub
  wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kerne…
  ☆1,752Jan 2, 2026Updated 4 months ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• cbayet / PoolSprayer

  View on GitHub
  Simple library to spray the Windows Kernel Pool
  ☆110Jan 6, 2020Updated 6 years ago
• Cr4sh / KernelForge

  View on GitHub
  A library to develop kernel level Windows payloads for post HVCI era
  ☆503May 18, 2021Updated 4 years ago
• MrAle98 / CVE-2025-21333-POC

  View on GitHub
  POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY
  ☆233Apr 12, 2025Updated last year
• yardenshafir / CVE-2020-1034

  View on GitHub
  PoC demonstrating the use of cve-2020-1034 for privilege escalation
  ☆126Mar 16, 2021Updated 5 years ago
• Wa1nut4 / CVE-2024-26230

  View on GitHub
  LPE of CVE-2024-26230
  ☆23Sep 1, 2024Updated last year
• vp777 / exploit-dev

  View on GitHub
  ☆12Aug 31, 2022Updated 3 years ago
• zerozenxlabs / CVE-2023-36424

  View on GitHub
  Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation
  ☆131Mar 22, 2024Updated 2 years ago
• Mas0nShi / CLFS-Gadgets

  View on GitHub
  Security research helper for CLFS drivers
  ☆16Sep 5, 2024Updated last year
• chompie1337 / Windows_MSKSSRV_LPE_CVE-2023-36802

  View on GitHub
  LPE exploit for CVE-2023-36802
  ☆167Oct 10, 2023Updated 2 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• nccgroup / exploit_mitigations

  View on GitHub
  Knowledge base of exploit mitigations available across numerous operating systems, architectures and applications and versions.
  ☆923May 20, 2024Updated last year
• KaLendsi / CVE-2021-43224-POC

  View on GitHub
  Windows Common Log File System Driver POC
  ☆95Dec 21, 2021Updated 4 years ago
• exploits-forsale / prefetch-tool

  View on GitHub
  Windows KASLR bypass using prefetch side-channel
  ☆178Apr 26, 2024Updated 2 years ago
• 0vercl0k / windbg-scripts

  View on GitHub
  A bunch of JavaScript extensions for WinDbg.
  ☆365Nov 28, 2024Updated last year
• exploits-forsale / 24h2-nt-exploit

  View on GitHub
  Exploit targeting NT kernel in 24H2 Windows Insider Preview
  ☆153Apr 26, 2024Updated 2 years ago
• saaramar / Deterministic_LFH

  View on GitHub
  Have fun with the LowFragmentationHeap
  ☆254Feb 3, 2021Updated 5 years ago
• tandasat / hvext

  View on GitHub
  The Windbg extensions to study Hyper-V on Intel and AMD processors.
  ☆173Feb 10, 2026Updated 2 months ago
• fortra / CVE-2022-37969

  View on GitHub
  Windows LPE exploit for CVE-2022-37969
  ☆135Jul 11, 2023Updated 2 years ago
• waleedassar / SimpleNTSyscallFuzzer

  View on GitHub
  ☆151Jan 25, 2024Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• chompie1337 / SIGRed_RCE_PoC

  View on GitHub
  ☆270Jul 10, 2023Updated 2 years ago
• QiuhaoLi / CVE-2021-3929-3947

  View on GitHub
  Recursive MMIO VM Escape PoC
  ☆171May 13, 2022Updated 3 years ago
• mistymntncop / CVE-2024-5274

  View on GitHub
  ☆84Aug 30, 2024Updated last year
• ycdxsb / WindowsPrivilegeEscalation

  View on GitHub
  Collection of Windows Privilege Escalation (Analyse/PoC/Exploit)
  ☆471Nov 19, 2024Updated last year
• connormcgarr / Kernel-Exploits

  View on GitHub
  Kernel Exploits
  ☆259Jul 18, 2021Updated 4 years ago
• shogunlab / awesome-hyper-v-exploitation

  View on GitHub
  A curated list of Hyper-V exploitation resources, fuzzing and vulnerability research.
  ☆449Apr 11, 2025Updated last year
• mandiant / flare-kscldr

  View on GitHub
  FLARE Kernel Shellcode Loader
  ☆177May 3, 2019Updated 7 years ago