Arbitrary kernel memory write in CPUID CPU-Z driver

This repository contains the full source code for Stryker, a multi-purpose proof-of-concept tool that exploits CVE-2017-15303 (a vulnerability in the CPU-Z 1.41 driver) to perform advanced kernel-level operations on x64 Windows systems. The main capabilities are: - Disabling/enabling Driver Signature Enforcement (DSE), allowing unsigned drivers to be loaded. - Hijacking protected processes by modifying their kernel objects (EPROCESS), effectively bypassing process protection mechanisms. - Loading arbitrary unsigned drivers into kernel mode by injecting shellcode into a signed driver (procexp152.sys) and triggering execution via crafted IRPs. The repository is structured into several Visual Studio projects: - `src/Maya/` contains the main Stryker tool, including all core logic for exploitation, driver mapping, process manipulation, and memory access routines. - `src/DummyDrv/` and `src/DummyDrv2/` provide example kernel drivers for testing driver loading and device communication. - The code is written in C and is intended for advanced users with knowledge of Windows kernel internals. The exploit is operational and provides real kernel-level payloads, but requires specific drivers (cpuz141.sys and procexp152.sys) to be present. It is not weaponized in the sense of being part of a larger exploitation framework, but it is a fully functional local privilege escalation and kernel code execution tool for vulnerable Windows systems.