Hello, I wanted to sell a vulnerability I found on Windows Bootloader.
The POC video is here:
Why you didn't browse the source files in your host?
Because my OS is in my language.
Why is the compilation censored?
Because the compilation and the result also contains some sensitive information for the exploit.
How do you know it works on secure boot enabled with both UEFI and BIOS?
Well, the answer is simple. As you see from the video, the driver launches when the Windows is at its core. It's not a bootkit, its executed after Windows starts. So secure boot or firmware has nothing to do with it.
Disadvantage of the vulnerability is:
This vulnerability interrupts the boot process, so driver must end in order for Windows to continue (as seen in video).
Advantages of the vulnerability is:
Secure boot can be enabled,
Works on UEFI and BIOS,
Works in Windows 7-11.
Price: 50K
XSS Escrow accepted, obviously
BTC Only
I am not a low level coder, neither a kernel developer. I just found a vulnerability to load (execute) unsigned drivers in x64 Windows 7-11 and wanted to sell it.
The POC video is here:
Watch LoadUnsigned by NTSploit | Streamable
Watch "LoadUnsigned by NTSploit" on Streamable.
streamable.com
Why you didn't browse the source files in your host?
Because my OS is in my language.
Why is the compilation censored?
Because the compilation and the result also contains some sensitive information for the exploit.
How do you know it works on secure boot enabled with both UEFI and BIOS?
Well, the answer is simple. As you see from the video, the driver launches when the Windows is at its core. It's not a bootkit, its executed after Windows starts. So secure boot or firmware has nothing to do with it.
Disadvantage of the vulnerability is:
This vulnerability interrupts the boot process, so driver must end in order for Windows to continue (as seen in video).
Advantages of the vulnerability is:
Secure boot can be enabled,
Works on UEFI and BIOS,
Works in Windows 7-11.
Price: 50K
XSS Escrow accepted, obviously
BTC Only
I am not a low level coder, neither a kernel developer. I just found a vulnerability to load (execute) unsigned drivers in x64 Windows 7-11 and wanted to sell it.
Последнее редактирование модератором: