yardenshafir / IoRingReadWritePrimitive
Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
☆221Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for IoRingReadWritePrimitive
- A tool that is used to hunt vulnerabilities in x64 WDM drivers☆163Updated 10 months ago
- Static Binary Instrumentation tool for Windows x64 executables☆180Updated last week
- ☆131Updated 9 months ago
- ☆131Updated last year
- Unofficial Common Log File System (CLFS) Documentation☆164Updated 3 years ago
- Admin to Kernel code execution using the KSecDD driver☆237Updated 6 months ago
- Windows LPE exploit for CVE-2022-37969☆130Updated last year
- Lenovo Diagnostics Driver EoP - Arbitrary R/W☆169Updated last year
- PoC capable of detecting manual syscalls from usermode.☆182Updated 3 years ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆84Updated 2 years ago
- ☆153Updated 3 years ago
- The Windbg extension that implements commands helpful to study Hyper-V on Intel processors.☆129Updated 3 weeks ago
- ☆140Updated 3 months ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆236Updated 2 years ago
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆111Updated this week
- LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.☆255Updated 9 months ago
- BYOVD: Loading dbk64.sys and grabbing a handle to it☆149Updated 2 years ago
- Abusing exceptions for code execution.☆106Updated last year
- Exploitable drivers, you know what I mean☆126Updated 7 months ago
- Code Injection, Inject malicious payload via pagetables pml4.☆226Updated 3 years ago
- Vulnerable driver research tool, result and exploit PoCs☆180Updated last year
- msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.☆148Updated 10 months ago
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆111Updated 2 months ago
- This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret …☆231Updated last year
- Process Injection using Thread Name☆239Updated 2 months ago
- APC Internals Research Code☆158Updated 4 years ago
- Kernel Exploits☆242Updated 3 years ago
- Implementation of Advanced Module Stomping and Heap/Stack Encryption☆208Updated last year
- Some of my windows kernel exploits for learning purposes☆114Updated 2 years ago