Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/hacksysteam/HackSysExtremeVulnerableDriver

HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux
https://github.com/hacksysteam/HackSysExtremeVulnerableDriver

buffer-overflow driver exploit-development exploitation hevd info-leak kernel linux memory-corruption type-confusion uaf vulnerabilities windows

Last synced: 5 days ago
JSON representation

HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux

Awesome Lists containing this project

README 

        
# HackSys Extreme Vulnerable Driver



               ooooo   ooooo oooooooooooo oooooo     oooo oooooooooo.   

               `888'   `888' `888'     `8  `888.     .8'  `888'   `Y8b  

                888     888   888           `888.   .8'    888      888 

                888ooooo888   888oooo8       `888. .8'     888      888 

                888     888   888    "        `888.8'      888      888 

                888     888   888       o      `888'       888     d88' 

               o888o   o888o o888ooooood8       `8'       o888bood8P'   



------------------------------------------------------------------------



[![Black Hat Arsenal](https://www.toolswatch.org/badges/arsenal/2016.svg)](https://www.blackhat.com/asia-16/arsenal.html#hacksys-extreme-vulnerable-driver)

[![Appveyor Build Status](https://ci.appveyor.com/api/projects/status/o0i4crgqxjfnqf1s/branch/master?svg=true)](https://ci.appveyor.com/project/hacksysteam/hacksysextremevulnerabledriver/branch/master)

[![GitHub all Releases](https://img.shields.io/github/downloads/hacksysteam/HackSysExtremeVulnerableDriver/total)](https://github.com/hacksysteam/HackSysExtremeVulnerableDriver/releases)

[![Twitter Follow](https://img.shields.io/twitter/follow/HackSysTeam?style=social)](https://twitter.com/HackSysTeam)

[![Mastodon Follow](https://img.shields.io/mastodon/follow/109291325205105061?domain=https%3A%2F%2Finfosec.exchange&style=social)](https://infosec.exchange/@hacksysteam)

[![Discord Server](https://dcbadge.vercel.app/api/server/ns32uNhaq7?style=flat)](https://discord.com/invite/ns32uNhaq7)



The **HackSys Extreme Vulnerable Driver (HEVD)** is a **Windows Kernel** driver that is intentionally vulnerable. It has been developed for **security researchers** and **enthusiasts** to improve their skills in **kernel-level** exploitation.



**HEVD** offers a range of vulnerabilities, from simple **stack buffer overflows** to more complex issues such as **use-after-free**, **pool buffer overflows**, and **race conditions**. This allows researchers to explore exploitation techniques for each implemented vulnerability.



## Black Hat Arsenal 2016



* [Presentation](https://www.blackhat.com/docs/asia-16/materials/arsenal/asia-16-Ansari-HackSys-Extreme-Vulnerable-Driver.pdf)

* [White Paper](https://www.blackhat.com/docs/asia-16/materials/arsenal/asia-16-Ansari-HackSys-Extreme-Vulnerable-Driver-wp.pdf)



## Blog Post



* 



## External Exploits



* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 



## External Blog Posts



* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 

* 



## Author



> **Ashfaq Ansari**



> ashfaq[at]hacksys[dot]io



> **[Blog](https://hacksys.io/ "HackSys Team") | [@HackSysTeam](https://twitter.com/HackSysTeam)**



> [![HackSys Inc](https://hacksys.io/android-chrome-192x192.png "HackSys Inc")](https://hacksys.io)



> [https://hacksys.io/](https://hacksys.io/ "HackSys Inc")



## Screenshots



![Driver Banner](Screenshots/hevd-banner.png "Driver Banner")



![Help](Screenshots/hevd-help.png "Help")



![Exploitation](Screenshots/hevd-exploitation.png "Exploitation")



![Driver Debug Print](Screenshots/hevd-debug-print.png "Driver Debug Print")



## Vulnerabilities Implemented



* **Write NULL**

* **Double Fetch**

* **Buffer Overflow**

  * **Stack**

  * **Stack GS**

  * **NonPagedPool**

  * **NonPagedPoolNx**

  * **PagedPoolSession**

* **Use After Free**

  * **NonPagedPool**

  * **NonPagedPoolNx**

* **Type Confusion**

* **Integer Overflow**

  * **Arithmetic Overflow**

* **Memory Disclosure**

  * **NonPagedPool**

  * **NonPagedPoolNx**

* **Arbitrary Increment**

* **Arbitrary Overwrite**

* **Null Pointer Dereference**

* **Uninitialized Memory**

  * **Stack**

  * **NonPagedPool**

* **Insecure Kernel Resource Access**



## Building the driver



1. [Install Visual Studio 2017](https://visualstudio.microsoft.com/downloads/)

2. [Install Windows Driver Kit](https://docs.microsoft.com/en-us/windows-hardware/drivers/download-the-wdk)

3. Run the appropriate driver builder `Build_HEVD_Vulnerable_x86.bat` or `Build_HEVD_Vulnerable_x64.bat`



## Download



If you do not want to build **HackSys Extreme Vulnerable Driver** from source, you could download pre-built

executables for the latest release:



[https://github.com/hacksysteam/HackSysExtremeVulnerableDriver/releases](https://github.com/hacksysteam/HackSysExtremeVulnerableDriver/releases)



## Installing the driver



Use [OSR Driver Loader](https://www.osronline.com/article.cfm?article=157) to install **HackSys Extreme Vulnerable Driver**



## Testing



The **HackSys Extreme Vulnerable Driver** and the respective exploits have been tested on **Windows 7 SP1 x86** and **Windows 10 x64**  



## Sessions Conducted



* [Windows Kernel Exploitation 1](http://null.co.in/event_sessions/156-windows-kernel-exploitation)

* [Windows Kernel Exploitation 2](http://null.co.in/event_sessions/186-windows-kernel-exploitation-2)

* [Windows Kernel Exploitation 3](http://null.co.in/event_sessions/226-windows-kernel-exploitation-3)

* [Windows Kernel Exploitation 4](http://null.co.in/event_sessions/234-windows-kernel-exploitation-4)

* [Windows Kernel Exploitation 5](http://null.co.in/event_sessions/309-windows-kernel-exploitation-5)

* [Windows Kernel Exploitation 6](https://null.co.in/event_sessions/482-windows-kernel-exploitation-6)

* [Windows Kernel Exploitation 7](https://null.co.in/event_sessions/845-windows-kernel-exploitation-7)



## Workshops Conducted



* [Windows Kernel Exploitation Humla Pune](http://null.co.in/event_sessions/280-windows-kernel-exploitation)

* [Windows Kernel Exploitation Humla Mumbai](http://null.co.in/event_sessions/327-windows-kernel-exploitation)



## HEVD for Linux



![Linux HEVD Driver Banner](Screenshots/hevd-linux-banner.png "Linux HEVD Driver Banner")



![Linux HEVD Driver Installer](Screenshots/hevd-linux-install-uninstall.png "Linux HEVD Driver Installer")



![Linux HEVD Driver IOTCL Tests](Screenshots/hevd-linux-ioctl-tests.png "Linux HEVD Driver IOTCL Tests")



![Linux HEVD Driver IOTCL Log](Screenshots/hevd-linux-ioctl-log.png "Linux HEVD Driver IOTCL Log")



## License



Please see the file `LICENSE` for copying permission



## Contribution Guidelines



Please see the file `CONTRIBUTING.md` for contribution guidelines



## TODO & Bug Reports



Please file any enhancement request or bug report via the **GitHub** issue tracker at the below-given address: [https://github.com/hacksysteam/HackSysExtremeVulnerableDriver/issues](https://github.com/hacksysteam/HackSysExtremeVulnerableDriver/issues)



## Acknowledgments



Thanks go to these wonderful people: 🎉





  




------------------------------------------------------------------------



[![HackSys Inc](https://hacksys.io/android-chrome-192x192.png "HackSys Inc")](https://hacksys.io)