Windows Kernel Intel x64 SYSRET Vulnerability Exploit
Latest commit d0210ca Sep 11, 2012 @shjalayeri Update README.md
Permalink
Failed to load latest commit information.
junk new file: junk.suo Sep 11, 2012
sysret new file: junk.suo Sep 11, 2012
x64/Release new file: junk.suo Sep 11, 2012
README.md Update README.md Sep 11, 2012
junk.suo new file: junk.suo Sep 11, 2012
sysret.sln new file: junk.suo Sep 11, 2012
sysret.suo new file: junk.suo Sep 11, 2012

README.md

Windows Kernel Intel x64 SYSRET Vulnerability Exploit + Kernel Code Signing Bypass Bonus

The shellcode disables kernel Code Signing and will grant NT SYSTEM privilege to specified Application or already running process (PID). exploit successfully tested on Windows 7 SP0/1 (x64) and Windows 2008 R2 SP1 (x64).

-Shahriyar Jalayeri ( @ponez )