Skip to content

ASkyeye/24h2-nt-exploit

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commits

capstone-4.0.2-win64

capstone-4.0.2-win64

 
 

teb_nt_poc

teb_nt_poc

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

teb_nt_poc.sln

teb_nt_poc.sln

 
 

Repository files navigation

Windows 11 24H2 NT Exploit

Source code for the exploit detailed on exploits.forsale.

Should work on all Windows 11 24H2 x64 builds prior to 26058.

Components

  • teb_nt_poc.c - The exploit itself, leveraging CVE-2024-21345
  • prefetch_asm.asm, prefetch_leak.h - Side-channel to bypass kernel ASLR
  • find_nt_offsets.h, find_nt_offsets.c - Finds some non-exported globals in NT using Capstone
  • ntos.h - Misc non-public structs and functions related to NT.

About

Exploit targeting NT kernel in 24H2 Windows Insider Preview

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C 99.5%
  • Assembly 0.5%