FuzzySecurity/HackSysTeam-PSKernelPwn FuzzySecurity/HackSysTeam-PSKernelPwn

  • Stars
    star
    136
  • Rank 267,670 (Top 6 %)
  • Language
    PowerShell
  • Created almost 8 years ago
  • Updated over 7 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
FuzzySecurity/HackSysTeam-PSKernelPwn
github

FuzzySecurity

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

PowerShell-KernelPwn

Accompanying blog posts on using PowerShell to exploit the @HackSysTeam Extreme Vulnerable Driver (HEVD).

Win7 x32

Vulnerability Status Link
Stack Overflow Done http://www.fuzzysecurity.com/tutorials/expDev/14.html
Arbitrary Overwrite Done http://www.fuzzysecurity.com/tutorials/expDev/15.html
Null Pointer Dereference Done http://www.fuzzysecurity.com/tutorials/expDev/16.html
Uninitialized Stack Variable Done http://www.fuzzysecurity.com/tutorials/expDev/17.html
Integer Overflow Done http://www.fuzzysecurity.com/tutorials/expDev/18.html
Type Confusion Exploit Only N/A
Use After Free Done http://www.fuzzysecurity.com/tutorials/expDev/19.html
Pool Overflow Done http://www.fuzzysecurity.com/tutorials/expDev/20.html
Stack Overflow GS To Do
Uninitialized Heap Variable Done To do

Win10 x64 (v1511)

Vulnerability Status Link
Arbitrary Overwrite Done http://www.fuzzysecurity.com/tutorials/expDev/21.html

Win10 x64 (v1607)

Vulnerability Status Link
Double Fetch Done To Do

Win10 x64 (v1703)

Vulnerability Status Link
Arbitrary Overwrite Done To Do

More Repositories

1

PowerShell-Suite

My musings with PowerShell
PowerShell
2,584
star
2

Sharp-Suite

Also known by Microsoft as Knifecoat 🌶️
C#
1,094
star
3

StandIn

StandIn is a small .NET35/45 AD post-exploitation toolkit
C#
678
star
4

Fermion

Fermion, an electron wrapper for Frida & Monaco.
CSS
639
star
5

PSKernel-Primitives

Exploit primitives for PowerShell
PowerShell
429
star
6

Resource-List

GitHub Project Resource List
324
star
7

DefCon25

UAC 0day, all day!
275
star
8

Unix-PrivEsc

Local UNIX PrivEsc Aggregation
C
244
star
9

Capcom-Rootkit

Capcom Rootkit POC
PowerShell
180
star
10

BlueHatIL-2020

BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET
C#
143
star
11

Dendrobate

Managed code hooking template.
C#
126
star
12

DefCon24

DefCon24
PowerShell
118
star
13

BHUSA-2023

101
star
14

Driver-Template

Bare template for a Kernel Mode Driver
C#
50
star
15

SANS-HackFest-2023

46
star
16

BulkBindex

Winbindex bot to pull in binaries for specific releases
C#
43
star
17

IBM-RedCON-2020

IBM RedCON 2020 - Throwing an AquaWrench into the Kernel
43
star
18

AzureWireGuard

Automated WireGuard Deployment on Azure
42
star
19

BH-Arsenal-2019

SilkETW & SilkService
41
star
20

DefCon-Beijing-UAC

Slide deck for DefCon Beijing
39
star
21

WWHF-WayWest-2022

38
star
22

Magikarp

ECC Public Key Cryptography
C#
32
star
23

AdvSim.Cryptography

Simple and sane cryptographic wrapper library.
C#
30
star
24

DotNetToJScript-LanguageModeBreakout

C#
26
star
25

CapstoneKeystone-PowerShell

PowerShell Module Bindings for Capstone/Keystone
PowerShell
24
star
26

DLL-Template

Simple skeleton for a CPP DLL
C++
22
star
27

afl-frida-build

Ansible build for Afl++ Frida-Mode
CMake
19
star
28

SAFACon-Vienna

18
star
29

AdvSim.Compression

Simple and sane compression wrapper library.
C#
17
star
30

Presentations

A collection of my presentation materials.
15
star
31

BinaryNinja-Themes

Custom Binary Ninja Themes
12
star
32

AdventuresWithChef

A collection of Chef recipes, for learning and infrastructure automation.
Ruby
8
star
33

FuzzySecurity

4
star
34

FuzzySecurity.github.io

FuzzySecurity Archive
HTML
3
star