OffensiveRust

This is a collection of Rust code snippets, each implementing a different type of exploit or malicious functionality. The code is organized into several subdirectories, each containing a specific exploit or tool. Here's a summary of the code and its functionality: 1. AllocateWithSyscalls: This co...

Microsoft Windows 7 build 7601 (x86) - Local Privilege Escalation

include include / EDB Note: Download https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/47176.zip / / PREPROCESSOR DEFINITIONS / define MNSELECTITEM 0x1E5 define MNSELECTFIRSTVALIDITEM 0x1E7 define MNOPENHIERARCHY 0x01E3 define MNCANCELMENUS 0x1E6 define MNBUTTONDOWN...

NoMachine x86 < 6.0.80 - nxfuse Privilege Escalation Exploit

Exploit for windows platform in category local exploits include “stdafx.h” include define DEVICE L”\\.\nxfs-709fd562-36b5-48c6-9952-302da6218061″ define DEVICE2 L”\\.\nxfs-net-709fd562-36b5-48c6-9952-302da6218061709fd562-36b5-48c6-9952-302da6218061” define IOCTL 0x00222014 define IOCTL2...

Jungo Windriver 12.5.1 - Privilege Escalation Exploit

Exploit for windows platform in category local exploits // ConsoleApplication1.cpp : Defines the entry point for the console application. // include "stdafx.h" include include define device L"\\.\WINDRVR1251" define SPRAYSIZE 30000 typedef NTSTATUSWINAPI PNtAllocateVirtualMemory HANDLE...

Jungo Windriver 12.5.1 - Local Privilege Escalation

// ConsoleApplication1.cpp : Defines the entry point for the console application. // include "stdafx.h" include include define device L"\\.\WINDRVR1251" define SPRAYSIZE 30000 typedef NTSTATUSWINAPI PNtAllocateVirtualMemory HANDLE ProcessHandle, PVOID BaseAddress, ULONG ZeroBits, PULONG...

Microsoft Windows 7 SP1 x86 - GDI Palette Objects Local Privilege Escalation (MS17-017) Exploit

Exploit for windows platform in category local exploits E-DB Note: + Source: https://github.com/sensepost/gdi-palettes-exp + Binary: https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/42432.exe include include include include //From...

QuickHeal 16.00 - &#039;webssx.sys&#039; Driver Denial of Service

Exploit Title: QuickHeal webssx.sys driver DOS vulnerability Date: 19/02/2016 Exploit Author: Csaba Fitzl Vendor Homepage: http://www.quickheal.co.in/ Version: 16.00 Tested on: Win7x86, Win7x64 CVE : CVE-2015-8285 from ctypes import from ctypes.wintypes import import sys kernel32 = windll.kernel3...

XGI Windows VGA Display Manager 6.14.10.1090 - Arbitrary Write PoC

Exploit for windows platform in category dos / poc Title: XGI Windows VGA Display Manager Arbitrary Write Privilege Escalation Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2015-004.txt 1. Vulnerability Details Affected Vendor: Silicon Integrated Systems Corporation...

A null pointer vulnerability protection technology to improve the article-vulnerability warning-the black bar safety net

In the null pointer vulnerability protection technology-the primary article, we introduced a null pointer and a null pointer vulnerability concept, in this advanced article describes a null pointer use and the corresponding protection mechanisms. Author: sun Jian slope Directory 1 to improve the...

Windows-NDPROXY-SYSTEM

Original crash ... null pointer dereference Access violation - code c0000005 !!! second chance !!! 00000038 ?? ??? NDPROXY Local SYSTEM privilege escalation from ctypes import from ctypes.wintypes import import os, sys kernel32 = windll.kernel32 ntdll = windll.ntdll GENERICREAD = 0x80000000...

Micropoint ProActive Denfense &#039;Mp110013.sys&#039; 1.3.10123.0 - Local Privilege Escalation

/ Micropoint Proactive Denfense Mp110013.sys = 1.3.10123.0 Local Privilege Escalation Exploit VULNERABLE PRODUCTS Micropoint Proactive Denfense = 100323.1.2.10581.0285.r1 mp110013.sys = 1.3.10123.0 DETAILS: mp110013.sys handles DeviceIoControl request which tells driver...

CVE-2007-4967

Online Armor Personal Firewall 2.0.1.215 does not properly validate certain parameters to System Service Descriptor Table SSDT function handlers, which allows local users to cause a denial of service crash and possibly gain privileges via unspecified kernel SSDT hooks for Windows Native API...

CVE-2007-4967

CVE-2007-4967 affects Online Armor Personal Firewall 2.0.1.215. The issue stems from improper validation of parameters to System Service Descriptor Table (SSDT) function handlers, enabling a local attacker to trigger a denial of service (crash) and potentially gain privileges via unspecified kern...

MS Windows GDI Local Privilege Escalation Exploit (MS07-017)

No description provided by source. define WIN32WINNT 0x0500 include windows.h include shlwapi.h include stdio.h pragma comment lib, "user32.lib" pragma comment lib, "gdi32.lib" pragma comment lib, "shlwapi.lib" pragma comment lib, "ntdll.lib" / Here is a sploit for the GDI MS07-017 Local Privileg...

Microsoft Windows - GDI Privilege Escalation (MS07-017) (1)

Microsoft Windows - GDI Privilege Escalation MS07-017 1 define WIN32WINNT 0x0500 include include include pragma comment lib, "user32.lib" pragma comment lib, "gdi32.lib" pragma comment lib, "shlwapi.lib" pragma comment lib, "ntdll.lib" / Here is a sploit for the GDI MS07-017 Local Privilege...