All Projects → daem0nc0re → HEVD-CSharpKernelPwn

daem0nc0re / HEVD-CSharpKernelPwn

Licence: other
CSharp Writeups for HackSys Extreme Vulnerable Driver

Programming Languages

C#
18002 projects

Projects that are alternatives of or similar to HEVD-CSharpKernelPwn

DriverBuddyReloaded
Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks
Stars: ✭ 210 (+412.2%)
Mutual labels:  windows-kernel
Winfsp
Windows File System Proxy - FUSE for Windows
Stars: ✭ 4,071 (+9829.27%)
Mutual labels:  windows-kernel
stlkrn
C++ STL in the Windows Kernel with C++ Exception Support
Stars: ✭ 216 (+426.83%)
Mutual labels:  windows-kernel
PrivFu
Kernel mode WinDbg extension and PoCs for token privilege investigation.
Stars: ✭ 244 (+495.12%)
Mutual labels:  windows-kernel
NtRays
Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
Stars: ✭ 348 (+748.78%)
Mutual labels:  windows-kernel

HackSys Extreme Vulnerable Driver Writeups with CSharp

My writeups for HackSys Extreme Vulnerable Driver. All writeups are written with CSharp (except for DLL). Tested on following OS:

Description

Windows 7 SP1 x86

To build codes, open HEVD_Win7x86.sln and run build. All codes are generated in bin folder under the home directory.

Project Name Description
DoubleFetch Writeup for Double Fetch vulnerability. Multiple CPU core required.
InjectLib Sample DLL for Insecure Kernel Resource Access vulnerability. This DLL attempts to add hevdtest user with password Password123! and add hevdtest to Administrators group.
InsecureKernelResourceAccess Writeup for Insecure Kernel Resource Access vulnerability. DLL for DLL Hijacking is required.
IntegerOverflow Writeup for Integer Overflow vulnerablity.
NullPointerDereference Writeup for Null Pointer Dereference vulnerablity.
PoolOverflow Writeup for Pool Overflow vulnerablity.
StackOverflow Writeup for Stack Overflow vulnerablity.
StackOverflowGS Writeup for Stack Overflow vulnerablity with Stach Canary.
TypeConfusion Writeup for Type Confusion vulnerablity.
UninitializedHeapVariable Writeup for Uninitialized Heap Variable vulnerablity.
UninitializedStackVariable Writeup for Uninitialized Stack Variable vulnerablity.
UseAfterFree Writeup for Use-After-Free vulnerablity.
WriteNull Writeup for Write NULL vulnerablity.
WriteWhatWhere Writeup for Arbitrary Overwrite vulnerablity.
WriteWhatWhereGDI Writeup for Arbitrary Overwrite vulnerablity with GDI memory leak.

Windows 10 Version 1903 x64

To build codes, open HEVD_Win10x64.sln and run build. All codes are generated in bin folder under the home directory.

Project Name Description
ArbitraryIncrement Writeup for Arbitrary Increment vulnerablity.
ArbitraryReadWrite Writeup for Arbitrary Read and Write vulnerablity.
ArbitraryWrite Writeup for Arbitrary Overwrite vulnerablity.
InjectLib Sample DLL for Insecure Kernel Resource Access vulnerability. This DLL attempts to add hevdtest user with password Password123! and add hevdtest to Administrators group.
InsecureKernelResourceAccess Writeup for Insecure Kernel Resource Access vulnerability. DLL for DLL Hijacking is required.

Acknowledgments

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].