CVE-2021-31956

Win10 20H2 LPE for CVE-2021-31956

CVE-2021-31956 pretty stable exploit on win10 20h2 creates new console window so change that if you don't like oh and more importantly, change the createfilea() path to an actual writeable directory on disk

笔者的在原作者池风水利用工具(以下简称工具)基础上进行二次开发,新增了全自动获取内核调试模块符号的偏移量及配置参数和不同漏洞利用方式优化等功能, 解决了不同Windows版本适配问题,工具包括适配驱动和利用程序两部分组成,实现了在Windows 10 19H1之后任意版本包括满补丁系统上的稳定利用.

引用 这篇文章的目的是介绍一种基于内核态内存的越界写入通用利用技术和相关工具复现 [toc] 简介 笔者的在原作者池风水利用工具(以下简称工具)基础上进行二次开发,新增了全自动获取内核调试模块符号的偏移量及配置参数和不同漏洞利用方式优化等功能, 解决了不同Windows版本适配�

C# Utilities for Windows Notification Facility

SharpWnfSuite This is the repository for Windows Notification Facility (WNF) tools Currently, a C# port of the tools in wnfun developed by Alex Ionescu (@aionescu) and Gabrielle Viala (@pwissenlit) has been uploaded When I develop additional tools for Windows Notification Facility, they will be uploaded here Table Of Contents SharpWnfSuite Usage SharpWnfDump SharpWnfNameD

"# CVE-2021-31956" WIP PoC code for CVE-2021-31956 in preparation for OSEE Will improve it further after my OSEE exams and free time A lot of hardcoded offsets need to be changed if it is different on the target system ( but if it is anything similar to 2020 - 2021 builds then no change should be needed Not sure 100%) and you can't exit the program because man