HackSysExtremeVulnerableDriver icon indicating copy to clipboard operation
HackSysExtremeVulnerableDriver copied to clipboard

Published 20 hours ago verified publisher icon hacksysteam

ArbitraryReadWriteHelperNonPagedPoolNx exploitation?

Open w4fz5uck5 opened this issue 2 years ago • 2 comments

Hi, is that possible to exploit this IOCTL ArbitraryReadWriteHelperNonPagedPoolNx with somehow technique? i'm actually trying to exploit it but there so many filters that i can't. I guess it only works for ArbitraryWrite challenge or i'm missing something?

Thanks!

w4fz5uck5 avatar Mar 14 '23 19:03 w4fz5uck5

Hi @w4fz5uck5 this IOCTL itself is not vulnerable. This is used by win10-klfh branch to exploit pool buffer overflow to gain arbitrary read write primitives. Checkout win10-klfh branch of HEVD repo

hacksysteam avatar Mar 14 '23 21:03 hacksysteam

Thanks! <3

w4fz5uck5 avatar Mar 14 '23 21:03 w4fz5uck5