Data-Only Kernel Exploits

Posted on 2022-05-24: https://connormcgarr.github.io/hvci/

Another hit by Connor McGarr, this blog post focuses on how you can effectively exploit the Windows kernel (doing more than just token stealing, like calling arbitrary kernel APIs) without needing to run shellcode! Another great read I love his series.