Skip to content

exploits-forsale/prefetch-tool

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
prefetch_tool
prefetch_tool
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
prefetch_tool.sln
prefetch_tool.sln
 
 

Repository files navigation

Windows KASLR Prefetch Tool

A proof-of-concept tool for bypassing KASLR (kernel ASLR) on Windows 11. Inspired by EntryBleed for Linux.

This tool was developed as part of an exploit targetting Windows 11 24H2. I am not a side-channel expert at all, so this was very much new territory for me and the code is very hacky 😳 Help improving reliability for different CPU types would be much appreciated.

I have done limited testing with the machines at my disposal. I found the techniques I implemented to be quite reliable on modern Intel CPUs, but much less so on AMD.

CPU Support

CPU Status
Intel 🟢 Reliable
AMD 🟡 Flaky

About

Windows KASLR bypass using prefetch side-channel

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

67 stars

Watchers

3 watching

Forks

8 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages