Bypassing ASLR on Windows 11

42 replies 319 views Exploit Development

0xCyber

USER OP

Rank: Script Kiddie

Posts: 1

Rep: 0

Joined: 2021-03

2023-10-23 14:30:00

Hey everyone,

I've been analyzing some recent changes to Windows Kernel and found an interesting approach to bypassing ASLR using a novel information disclosure vulnerability.

Let me walk you through the method...

RootUser

USER

Rank: Script Kiddie

Posts: 1

Rep: 0

Joined: 2021-06

2023-10-23 15:45:00

Great find @0xCyber.

I encountered something similar while testing on Windows 11 Build 22621. The key is to leverage the heap grooming technique before attempting the actual exploit.

GhostProtocol

USER

Rank: Script Kiddie

Posts: 1

Rep: 0

Joined: 2021-09

2023-10-23 17:10:00

I can confirm this works on bare metal as well. The offset changes slightly between builds but the methodology remains solid. Great work!

Giriş Yapmanız Gerekiyor

Bu konuya yanıt yazmak için oturum açmalısınız. Siber Alem hacker topluluğunun bir parçası olun!

Giriş Yap / Login Kayıt Ol / Register

Thread Statistics

Replies 42

Author 0xCyber

Created 2023-10-23

Status

Open