Windows

CVE-2019-0708 - BLUEKEEP (RDP)

Vulnerability Overview RDP Connection Sequence Analysis of RDP Service Vulnerability Windows Kernel Debugging Note: Please, check the above two link to understand the how rdp connectioin sequence work and also about the vulnerability exists in Microsoft Windows RDP kernel driver - termdd.sys (MS_T120) My approach: I am n00bs in kernel exploitati...

WINDOWS INSTALLER BYPASS USING ROLLBACK SCRIPT (RBS AND RBF) - RACE CONDITION

Exploit https://github.com/SandboxEscaper/polarbearrepo/tree/master/InstallerBypass Windows Installer Windows Installer accomplishes rollback by creating a rollback script. A rollback script is a file that contains a linear sequence of operations to perform, such as file and registry updates, configuration information updates, user interface notifications, and state information for other oper...