HackSysExtremeVulnerableDriver
Mhyprot2DrvControl
Our great sponsors
HackSysExtremeVulnerableDriver | Mhyprot2DrvControl | |
---|---|---|
1 | 2 | |
2,310 | 333 | |
- | - | |
5.4 | 4.3 | |
3 months ago | over 3 years ago | |
C | C# | |
GNU General Public License v3.0 only | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
HackSysExtremeVulnerableDriver
-
BOF in Proving Grounds?
Windows drivers: https://github.com/hacksysteam/HackSysExtremeVulnerableDriver https://github.com/dhn/OSCE https://purpl3f0xsec.tech/2019/06/18/osce-prep-1.html Windows Exploitation Pathway https://github.com/epi052/OSCE-exam-practice
Mhyprot2DrvControl
-
Ransomware abuses Genshin Impact's kernel mode anti-cheat to bypass antivirus protection
Code seems to already to have been developed to use it 2 years ago: https://github.com/kagurazakasanae/Mhyprot2DrvControl
-
Microsoft admits to signing rootkit malware in supply-chain fiasco
Here's a PoC for it on GitHub, you can read the code, it's pretty much just an IOCTL for each operation. Check Driver/MhyProt2.cs.
https://github.com/kagurazakasanae/Mhyprot2DrvControl
What are some alternatives?
WinRing0 - WinRing0 is a hardware access library for Windows.
evil-mhyprot-cli - A PoC for Mhyprot2.sys vulnerable driver that allowing read/write memory in kernel/user via unprivileged user process.
dostackbufferoverflowgood
BetterJoy - Allows the Nintendo Switch Pro Controller, Joycons and SNES controller to be used with CEMU, Citra, Dolphin, Yuzu and as generic XInput
winfsp - Windows File System Proxy - FUSE for Windows
OSCE - Some exploits, which I’ve created during my OSCE preparation.
LenovoController - 🎮 A lightweight alternative to Lenovo Vantage
MoonOS - MoonOS (just a kernel atm) is a micro kernel designed for the x86_64 and arm architecure.
DOOM - DOOM Open Source Release
Buffer-Overflow-Exploit-Development-Practice - Good For OSCP Training
VectorKernel - PoCs for Kernelmode rootkit techniques research.