HackSys Extreme Vulnerable Driver

HackSys Extreme Vulnerable Driver is intentionally vulnerable Windows driver developed for security enthusiasts to learn and polish their exploitation skills at Kernel level.

HackSys Extreme Vulnerable Driver caters wide range of vulnerabilities ranging from simple Buffer Overflows to complex Use After Frees and Pool Overflows. This allows the researchers to explore the exploitation techniques for every implemented vulnerabilities.

Before You Start

• https://niiconsulting.com/checkmate/2016/01/windows-kernel-exploitation/
• https://samdb.xyz/2016/01/16/intro_to_kernel_exploitation_part_0.html
• https://samdb.xyz/2016/01/17/intro_to_kernel_exploitation_part_1.html
• https://samdb.xyz/2016/01/18/intro_to_kernel_exploitation_part_2.html
• https://samdb.xyz/2017/06/22/intro_to_kernel_exploitation_part_3.html
• https://sizzop.github.io/2016/07/05/kernel-hacking-with-hevd-part-1.html
• https://sizzop.github.io/2016/07/06/kernel-hacking-with-hevd-part-2.html
• https://sizzop.github.io/2016/07/07/kernel-hacking-with-hevd-part-3.html
• https://sizzop.github.io/2016/07/08/kernel-hacking-with-hevd-part-4.html
• https://www.fuzzysecurity.com/tutorials/expDev/14.html
• https://www.fuzzysecurity.com/tutorials/expDev/15.html
• https://www.fuzzysecurity.com/tutorials/expDev/16.html
• https://www.fuzzysecurity.com/tutorials/expDev/17.html
• https://www.fuzzysecurity.com/tutorials/expDev/18.html
• https://www.fuzzysecurity.com/tutorials/expDev/19.html
• https://www.fuzzysecurity.com/tutorials/expDev/20.html
• https://dokydoky.tistory.com/445
• https://hshrzd.wordpress.com/2017/05/28/starting-with-windows-kernel-exploitation-part-1-setting-up-the-lab/
• https://hshrzd.wordpress.com/2017/06/05/starting-with-windows-kernel-exploitation-part-2/
• https://hshrzd.wordpress.com/2017/06/22/starting-with-windows-kernel-exploitation-part-3-stealing-the-access-token/
• https://osandamalith.com/2017/04/05/windows-kernel-exploitation-stack-overflow/
• https://osandamalith.com/2017/06/14/windows-kernel-exploitation-arbitrary-overwrite/
• https://osandamalith.com/2017/06/22/windows-kernel-exploitation-null-pointer-dereference/
• https://dali-mrabet1.rhcloud.com/windows-kernel-exploitation-arbitrary-memory-overwrite-hevd-challenges/
• https://blahcat.github.io/2017/08/31/arbitrary-write-primitive-in-windows-kernel-hevd/
• https://klue.github.io/blog/2017/09/hevd_stack_gs/
• https://glennmcgui.re/introduction-to-windows-kernel-exploitation-pt-1/
• https://glennmcgui.re/introduction-to-windows-kernel-driver-exploitation-pt-2/

Running from Release

hacksysteam/HackSysExtremeVulnerableDriver
HackSys Extreme Vulnerable Windows Driver. Contribute to hacksysteam/HackSysExtremeVulnerableDriver development by…github.com

Supported Windows Versions

This driver has been successfully tested on Windows XP SP3 (x86), Windows 2003 SP3 (x86) andWindows 7 SP1 (x86), but it can support Windows 8/8.1 (x86) too.

Download and Install

First Download the zip file from above. Then download OSR Driver Loader…Downloads:Driver Loader
OSR Open Systems Resources, Inc. The Windows device driver and file systems experts. Seminars – Development …www.osronline.com

Open the driver application for your architecture, then install the driver that came with the HackSys Team release.

Now we are ready to test Extreme Vulnerable Driver…

C:\>HackSysEVDExploit.exe -s -c cmd.exe

In the next post on Windows Driver exploitation we will solve the overflow challenge, stay tuned.