Repository Name: thezdi/PoC Directory: FilesystemEoPs FilesystemEoPs Exploit code for several filesystem-based exploit techniques. Features FolderOrFileDeleteToSystem: - Description: If you have an arbitrary folder or file delete as SYSTEM or admin, this exploit turns it into an EoP to SYSTEM. - Credit: Abdelhamid Naceri (halov). FolderContentsDeleteToFolderDelete: - Description: If you have a delete of the contents of an arbitrary folder as SYSTEM/admin, or a recursive delete of a fixed but attacker-writable folder as SYSTEM/admin, this exploit turns it into an arbitrary folder delete as SYSTEM/admin. - Credit: Abdelhamid Naceri (halov). Chaining: These two can be chained together. Run FolderOrFileDeleteToSystem, then run FolderContentsDeleteToFolderDelete after triggering the prompt. Known Issues and Usage Notes FolderOrFileDeleteToSystem: - Hardware Bitness: Must match the target system. - Async Vulnerability: Can work with asynchronous file/folder delete vulnerabilities; uses the command-line flag for two-stage operation. FolderContentsDeleteToFolderDelete: - Cannot work with asynchronous delete vulnerabilities; requires the folder content deletion to be triggered while the exploit is running.