This post was originally written in 2016 for the Project Zero blog. However, in the end it was published separately in the journal PoC||GTFO issue #13 as wel...

Project Zero is Google's security research team dedicated to finding and fixing zero-day vulnerabilities in software and hardware, aiming to improve the security of the broader internet ecosystem. Security researchers can learn about vulnerability research, exploit development, and responsible disclosure practices to contribute to making the internet safer for everyone.

Project Zero

A deep technical exploration of exploiting Windows race conditions by manipulating the Object Manager's path lookup process. The technique combines recursive directories, symbolic links, hash collisions, and shadow directories to extend lookup times from microseconds to minutes, creating exploitable race windows. Testing on Windows 11 shows the method still works, achieving 3-minute lookup delays using just 2 directories with 16,000 collisions and 64 symbolic link reparses.

Windows Exploitation Techniques: Winning Race Conditions with Path Lookups

Investigating Object Manager Lookup Performance