This page is just a collection of exploits I have written while practicing Windows Exploitation.
QuickHeal Buffer Overflow (CVE-2017-5005) Exploit
This script can be used to generate malicious Mach-O file which can exploit QuickHeal and execute arbitrary shellcode.
Full writeup is available here: Analysis of CVE-2017-5005: QuickHeal Buffer Overflow
Exploit for the Windows Animated Cursor Remote Code Execution Vulnerability (CVE-2007-0038). This involved bypassing the weak ASLR implementation of Windows Vista.
Full writeup is available here: Windows Exploitation: ASLR Bypass (MS07–017)
My version of the QuickZip exploit discussed in this Offensive Security article.
Full writeup is available here: Windows Exploitation: Dealing with bad characters — QuickZip exploit
PMSoftware Simple Web Server 2.2-rc2 Exploit
Exploit for PMSoftware Simple Web Server 2.2-rc2 I created while learning Egghunting technique.
Full writeup is available here: Windows Exploitation: Egg hunting
Practice Vulnserver Exploits
Set of exploits for various Vulnserver commands.