91f5d0af5a
Add module for CVE-2014-0569
...
* Adobe flash, Integer overflow on casi32
2015-04-09 19:37:26 -05:00
11c6f3fdca
Do reliable resolution of kernel32
2015-03-29 15:52:13 -05:00
f84a46df63
Add module for CVE-2015-0313
2015-03-27 18:51:13 -05:00
bb81107e51
Land #4927 , @wchen-r7's exploit for Flash PCRE CVE-2015-0318
2015-03-13 23:58:05 -05:00
2a25e2b2e1
Update Main.as
2015-03-13 11:40:16 -05:00
0ee0a0da1c
This seems to work
2015-03-13 04:43:06 -05:00
0c3329f69e
Back on track
2015-03-12 15:26:55 -05:00
43b90610b1
Temp
2015-03-11 13:53:34 -05:00
2a9d6e64e2
Starting point for CVE-2015-0318
2015-03-11 09:58:41 -05:00
14c3848493
Delete useless comment
2015-03-09 16:59:10 -05:00
cb72b26874
Add module for CVE-2014-0311
2015-03-09 16:52:23 -05:00
af405eeb7d
Land #4287 , @timwr's exploit form CVS-2014-3153
2015-02-09 10:33:14 -06:00
aa7f7d4d81
Add DLL source code
2015-02-01 19:59:10 -06:00
89e5a2b892
disable -no-thumb, doesn't work with latest NDK?
2015-01-30 09:36:21 -06:00
47cd5a3e59
Land #4562 , wchen-r7's Win8 NtApphelpCacheControl privilege escalation
2015-01-15 13:52:07 -06:00
7e1b8a1c83
Not needed anymore
2015-01-09 19:05:44 -06:00
c79589509c
Old comment
2015-01-09 19:04:50 -06:00
74e8e057dd
Use RDL
2015-01-09 19:02:08 -06:00
f998bfc246
Update exploit.cpp
2015-01-08 21:37:13 -06:00
eea6ccee1f
Source
2015-01-08 18:43:29 -06:00
844460dd87
Update bypass UAC to work on 8.1 and 2012
...
This commit contains a bunch of work that comes from Meatballs1 and
Lesage, and updates the bypassuac_inject module so that it works on
Windows 8.x and Windows 2012. Almost zero of the code in this module
can be attributed to me. Most of it comes from Ben's work.
I did do some code tidying, adjustment of style, etc. but other than
that it's all down to other people.
2015-01-08 15:39:19 +10:00
5c50a07c0f
futex_requeue
2014-12-01 03:49:22 +00:00
7772da5e3f
Change paths, add makefile and compile
2014-11-30 21:06:11 -06:00
b6306ef7a2
Move C source to exploits folder
2014-11-30 20:42:53 -06:00
f43a6e9be0
Use PDWORD_PTR and DWORD_PTR
2014-10-31 17:35:50 -05:00
6154b7d55f
Fix style again
2014-10-31 12:51:48 -05:00
203af90a44
Fix style
2014-10-31 12:50:23 -05:00
0c23733722
Use hungarian notation
2014-10-31 12:47:50 -05:00
8e547e27b3
Use correct types
2014-10-31 12:37:21 -05:00
cbd616bbf5
A few sneaky style changes, but no functional ones
...
Changes were purely for style, and Juan was happy to let me make them
as part of the merge.
2014-10-31 09:08:11 +10:00
6574db5dbb
Fix the 64 bits code
2014-10-30 17:01:59 -05:00
03a84a1de3
Search the AccessToken
2014-10-30 12:17:03 -05:00
908094c3d3
Remove debug, treat warnings as errors
2014-10-28 09:04:02 +10:00
0a03b2dd48
Final code tidy
2014-10-28 08:59:33 +10:00
6f3b373f01
More code tidy and unifying of stuff
2014-10-28 08:37:49 +10:00
0e761575c8
More code tidying, reduced x64/x86 duplication
2014-10-28 08:09:18 +10:00
062eff8ede
Fix project settings, make files, start tidying of code
2014-10-28 07:58:19 +10:00
d6a63ccc5e
Remove unnecessary C debugging code for the exploit
2014-10-27 11:24:23 -04:00
46b1abac4a
More robust check routine for cve-2014-4113
2014-10-27 11:19:12 -04:00
4406972b46
Do version checking minor cleanup
2014-10-27 09:32:42 -05:00
0aaebc7872
Make GetPtiCurrent USER32 independent
2014-10-26 18:51:02 -05:00
34697a2240
Delete 'callback3' also from 32 bits version
2014-10-26 17:28:35 -05:00
7416c00416
Initial addition of x64 target for cve-2014-4113
2014-10-26 16:54:42 -04:00
d8eaf3dd65
Add exploit source code
2014-10-23 18:59:58 -05:00
8cca4d7795
Fix the makefile to use the right directory
...
Reported by severos on IRC, the current output
class is in the right place, but the makefile
was broken.
2014-08-03 13:38:15 -05:00
ce5d3b12e7
Land #3403 - MS13-097 Registry Symlink IE Sandbox Escape
2014-06-26 13:48:28 -05:00
443f9f175c
Update IE11Sandbox exploit source
2014-06-03 09:58:07 -05:00
372a12b966
Restore make.msbuild permissions
2014-06-03 09:07:34 -05:00
98a06b3d72
Restore make.msbuild
2014-06-03 09:05:26 -05:00
f918bcc631
Use powershell instead of mshta
2014-06-03 09:01:56 -05:00
jvazquez-r7
sinn3r
Brent Cook
OJ
Tim
Spencer McIntyre
HD Moore