yuvatia / page-table-exploitationView external linksLinks
A demonstration of how page tables can be used to run arbitrary code in ring-0 and lead to a privesc. Uses CVE-2016-7255 as an example.
β11Jun 11, 2018Updated 7 years ago
Alternatives and similar repositories for page-table-exploitation
Users that are interested in page-table-exploitation are comparing it to the libraries listed below
Sorting:
- lowlevel cyber course - riscv & i8086 competitionβ11Jan 12, 2019Updated 7 years ago
- π³οΈβπ ζ§ε°ζ°ηΎ€δ½ηεε²θΏη¨β14Apr 19, 2021Updated 4 years ago
- Packet Injection With WFPβ16Feb 20, 2023Updated 2 years ago
- Basic utilities for executing, reading and writing 64-bit data in a 32-bit WoW64 processβ19Jul 8, 2022Updated 3 years ago
- Hooking Heavens Gate in a weekendβ13Jan 1, 2022Updated 4 years ago
- CTF Finalsβ17Nov 14, 2017Updated 8 years ago
- x64 assembler libraryβ31Jun 7, 2024Updated last year
- Features My internal isnt anything amazing it only has the basics. Spotted Esp 2D Boxes (with or without healthbar) Display player distaβ¦β16Aug 6, 2020Updated 5 years ago
- This project will give you an example how you can hook a kernel vtable function that cannot be directly calledβ84Dec 25, 2021Updated 4 years ago
- β29Dec 29, 2022Updated 3 years ago
- A poc of embedding x64 code into x86 PE fileβ20Sep 25, 2019Updated 6 years ago
- File system minifilter driver for Windows to block symbolic link attacks.β52Dec 16, 2020Updated 5 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.β24Jan 23, 2018Updated 8 years ago
- It's a kernel-based keylogger for Windows x86/x64.β145Sep 18, 2022Updated 3 years ago
- β23Jan 25, 2022Updated 4 years ago
- Function hooks in Windows NT Kernelβ27Oct 13, 2020Updated 5 years ago
- β49Mar 29, 2022Updated 3 years ago
- Process path modification x64β60Jul 18, 2018Updated 7 years ago
- Crystal Anti-Exploit Protection 2012β37May 31, 2020Updated 5 years ago
- x64 injector using LoadLibrary made in assembler (MASM)β27Jun 28, 2018Updated 7 years ago
- win10 pgContext dynamic dump (btc version)β110Jan 15, 2020Updated 6 years ago
- Finding Truth in the Shadowsβ120Jan 26, 2023Updated 3 years ago
- PTE hookβ33Jun 15, 2024Updated last year
- https://key08.com/index.php/2021/10/19/1375.htmlβ71May 11, 2022Updated 3 years ago
- A bootloader imgdata unpacker for Nexus 4, 5 and 7 smartphones as well as imgdata tool for Nexus 5.β26Aug 5, 2017Updated 8 years ago
- β29Oct 19, 2024Updated last year
- θͺη¨ηshellcodeηζζ‘ζΆβ33Jul 5, 2023Updated 2 years ago
- β73Jul 29, 2021Updated 4 years ago
- Rethinking the User Interface of AIβ28Updated this week
- β73Aug 31, 2022Updated 3 years ago
- ntdll.h - compatible with MSVC 6.0, Intel C++ Compiler and MinGW. Serves as a complete replacement for Windows.hβ149Jun 16, 2019Updated 6 years ago
- Yet another Windows DLL injector.β40Nov 17, 2021Updated 4 years ago
- Open-source EDR kernel-component for system monitoring and DLL injectionβ33Nov 14, 2020Updated 5 years ago
- Assembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.β80May 3, 2023Updated 2 years ago
- Windows GPU rootkit PoC by Team Jellyfishβ37May 9, 2015Updated 10 years ago
- β35Oct 10, 2023Updated 2 years ago
- Analyze Windows x64 Kernel Memory Layoutβ129Nov 19, 2020Updated 5 years ago
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heapβ215Jul 2, 2020Updated 5 years ago
- Stripped-down release of Tiny CC for minimalist coding on 64-bit Windows.β40Jan 31, 2026Updated 2 weeks ago