The guide introduces Windows Kernel Exploitation, focusing on Windows 7 (x86), Windows 10 (x64), and leading up to Windows 11 (x64). Required tools include virtualization software, WinDbg, HEVD, OSRLOADER, Python, Ghidra, and Sickle. It outlines resources for learning exploit development and offers step-by-step instructions for setting up kernel debugging and working with device drivers. The post also covers a practical example of exploiting stack overflow vulnerability in Windows 7 using HEVD, explaining the process, necessary configurations, and how to develop and test kernel shellcode.
Table of contents
Table of ContentsKernel Debugging with WinDbgIntroduction to HEVDStack Overflow (Windows 7 - x86)SourcesSort: