CVE-2024-38063

This repository contains a functional proof-of-concept exploit for CVE-2024-38063, a remote code execution vulnerability in Windows tcpip.sys. The exploit leverages IPv6 packet coalescing and malformed extension headers to trigger a heap-based buffer overflow via integer underflow and overflow conditions.

This repository contains a functional exploit PoC for CVE-2024-38063, which targets an IPv6 fragmentation vulnerability. The script uses Scapy to craft and send malformed IPv6 packets with specific extension headers to trigger memory corruption, potentially leading to a crash or RCE.

The repository contains a functional Python exploit for CVE-2024-38063, leveraging Scapy to craft malicious IPv6 packets with extension headers. The script includes dependencies for packet manipulation, visualization, and reporting, suggesting a comprehensive PoC for network-based exploitation.

This repository contains a functional PoC for CVE-2024-38063, a Windows TCP/IP RCE vulnerability. The exploit leverages crafted IPv6 packets with specific extension headers (DestOpt and Fragment) to trigger the vulnerability, requiring only two packets and a 60-second wait time.

This repository provides a PowerShell script to mitigate CVE-2024-38063 by disabling IPv6 on network adapters. The script includes functions to detect, enable, and disable IPv6 on specific or all adapters.

This repository contains a functional Python-based PoC for CVE-2024-38063, a Windows TCP/IP RCE vulnerability. It crafts and sends malformed IPv6 packets with optional shellcode injection to exploit the flaw.

This Python script uses Scapy to craft and send malformed IPv6 packets with fragmented extension headers to trigger memory corruption in vulnerable systems. It supports multiple network interfaces and optional MAC addressing.

The repository contains a functional Python exploit for CVE-2024-38063, targeting an IPv6 fragment underflow vulnerability. It includes AI-driven fuzzing capabilities and multiple attack modes (vulnerability scanning, crash, and RCE placeholder).

The repository contains a functional PoC for CVE-2024-38063, a Windows TCP/IP IPv6 remote code execution vulnerability caused by an integer underflow. The Python script uses Scapy to craft and send malformed IPv6 packets with specific fragmentation and extension headers to trigger memory corruption.

This repository contains a functional PoC exploit for CVE-2024-38063, which crafts and sends malicious IPv6 packets with fragmented headers and destination options to trigger a kernel vulnerability, likely leading to a denial-of-service condition.

This repository contains a functional exploit PoC for CVE-2024-38063, targeting a Windows TCP/IP vulnerability via crafted IPv6 packets. The script uses Scapy to generate and send malformed IPv6 packets with extension headers to trigger a memory corruption or DoS condition.

This repository provides a detailed technical analysis of CVE-2024-38063, a zero-click RCE vulnerability in the Windows IPv6 TCP/IP stack. It includes root cause analysis, mitigation strategies, and references to genuine PoCs, but does not contain functional exploit code.

This is a detailed technical writeup by Marcus Hutchins analyzing CVE-2024-38063, a kernel vulnerability in Windows' tcpip.sys driver related to IPv6 option processing. It includes patch analysis, reverse engineering insights, and a Python script using Scapy to craft test packets.

This repository contains a functional Python script that exploits CVE-2024-38063, a critical vulnerability in Windows IPv6 Neighbor Discovery (ND) packet handling. The exploit uses Shodan for target discovery and Scapy to craft malicious IPv6 packets, inducing a BSOD via improper fragment reassembly.

This repository contains functional exploit code for CVE-2024-38063, leveraging IPv6 fragmentation and extension headers to trigger memory corruption and execute shellcode. The PoC uses Scapy to craft malicious packets with embedded shellcode, targeting a specific IPv6 address and MAC address.

This repository provides a detailed technical analysis of CVE-2024-38063, focusing on the patch diff in tcpip.sys and the exploitation process involving IPv6 options. It includes a Python script using Scapy to craft test packets but does not contain a full exploit.

The repository contains functional exploit code for CVE-2024-38063, a critical Windows TCP/IP RCE vulnerability. The PoC uses Scapy to craft malformed IPv6 packets with destination options and fragmentation to trigger memory corruption.

This repository provides a detailed technical analysis and educational implementation of detection and mitigation strategies for CVE-2024-38063, a critical Windows TCP/IP RCE vulnerability. It includes root cause analysis, IDS/IPS rules, and lab-based testing but does not contain functional exploit code.

This repository provides a detailed technical analysis of CVE-2024-38063, an IPv6 TCP/IP Remote Code Execution vulnerability in Windows systems. It includes a lab setup guide, exploitation scenario, and proof-of-concept demonstration leading to a BSOD.

This repository contains a functional Python exploit for CVE-2024-38063, targeting a Windows IPv6 vulnerability. The exploit includes advanced error handling, network interface detection, and packet crafting using Scapy, with DO-176C compliance for structured error management.

The repository contains a functional Python exploit for CVE-2024-38063, leveraging Scapy to craft malicious IPv6 packets with extension headers. The script includes dependencies for packet manipulation, visualization, and reporting, suggesting a comprehensive PoC for network-based exploitation.

The repository contains a functional PoC exploit for CVE-2024-38063, targeting an integer underflow in the Windows IPv6 stack (`tcpip.sys`). The exploit uses Scapy to craft malformed IPv6 packets with fragmented headers and unrecognized options to trigger a BSOD or potential RCE.

This repository contains a functional exploit for CVE-2024-38063, targeting a vulnerability in the Windows TCP/IP stack related to IPv6 packet coalescing. The exploit uses Scapy to craft malicious IPv6 packets with specific extension headers to trigger the vulnerability.

The repository lacks functional exploit code and contains vague marketing language, with no technical details about CVE-2024-38063. Files are mostly placeholders with 'Touch update' comments and no substantive content.

This repository contains a functional exploit PoC for CVE-2024-38063, targeting a Windows TCP/IP vulnerability via crafted IPv6 packets with fragmentation and destination options headers. The exploit includes an attack script, victim capture tools, and a machine learning model for detecting the attack pattern.

This repository provides a detailed technical analysis of CVE-2024-38063, a critical vulnerability in the Windows TCP/IP stack that allows remote code execution via crafted IPv6 packets. It includes affected versions, mitigation steps, and references to official advisories.

This repository contains functional exploit code for CVE-2024-38063, a Windows IPv6 vulnerability affecting Windows 10, 11, and Server 2016-2022. The exploit uses crafted IPv6 packets to trigger a denial-of-service (DoS) condition, leveraging tools like nping and Scapy to send malformed packets.

This repository contains a functional proof-of-concept exploit for CVE-2024-38063, a remote code execution vulnerability in tcpip.sys. The exploit leverages crafted IPv6 packets with specific extension headers to trigger memory corruption in the target system.

This repository contains a PowerShell script that disables IPv6 on network adapters as a mitigation for CVE-2024-38063. The script directly modifies network adapter bindings to disable the ms_tcpip6 component.

This exploit leverages a crafted IPv6 packet sequence with fragmented extension headers to trigger a memory corruption vulnerability in the target system. The PoC sends multiple batches of malformed packets to induce a DoS condition.

The repository contains functional exploit code for CVE-2024-38063, targeting an IPv6 vulnerability with crafted packets to trigger integer underflow and potential DoS or RCE. The code includes payload generation, packet manipulation, and adaptive evasion techniques.

This repository contains PowerShell scripts to audit and install patches for CVE-2024-38063, an IPv6-related vulnerability. The scripts check for installed patches and download/install missing updates but do not include exploit code.

This repository contains a PowerShell script that mitigates CVE-2024-38063 by disabling IPv6 via registry modification. The script automates the creation and application of a registry file to set the 'DisabledComponents' value, effectively disabling IPv6 to prevent exploitation of the vulnerability.