Skip to content

Kalagious/VulnerableDriver

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
VulnerableDriver
VulnerableDriver
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
VulnerableDriver.sln
VulnerableDriver.sln
 
 

Repository files navigation

Unsigned Driver, requires signing and secure boot to be off.

Exposes 2 IRP Handlers for IRP_MJ_READ and IRP_MJ_WRITE.

Each one can read and write kernel memory respectively using a user supplied buffer.

The buffer format is the following for each request:

  • IRP_MJ_READ:
    Buffer must be big enough to contain the read result
    *Bytes 0-7: Byte count of data to read
    *Bytes 8-15: Address to start read from
    *Remaining Bytes: Empty space for read result


  • IRP_MJ_WRITE:
    *Bytes 0-7: Byte count of data to write
    *Bytes 8-15: Address to start write from
    *Remaining Bytes: Data to write



Each IRP Handler can be access like so:

ReadFile(device, buffer, sizeof(buffer), &bytesRead, 0);
WriteFile(device, buffer, sizeof(buffer), &bytesWritten, 0);

About

Basic unsigned driver for Windows with kernel read write abilities used to practice and develop kernel exploits

Resources

Readme
Activity

Stars

3 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages