1.安装msys2
https://www.msys2.org/
2.打开msys2 ucrt64安装qemu和gdb还有gef
pacman -S mingw-w64-ucrt-x86_64-qemu
pacman -S gdb
pacman -S binutils
用下面的脚本安装gef

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
#!/usr/bin/env bash

set -e

# check dependencies
if [ ! "$(command -v python3)" ]; then
	echo "GEF requires Python3 installed."
	exit 1
fi

# Backup gdbinit if any
if [ -f "${HOME}/.gdbinit" ]; then
    mv "${HOME}/.gdbinit" "${HOME}/.gdbinit.old"
fi

tag=$(python3  -X utf8 -c 'import urllib.request as r,json as j; x=j.loads(r.urlopen("https://api.github.com/repos/hugsy/gef/tags").read()); print(x[0]["name"])')
python3 -X utf8 -c "import urllib.request as r; x=r.urlopen('https://github.com/hugsy/gef/raw/${tag}/gef.py').read(); print(x.decode('utf-8'))" > ${HOME}/.gef-${tag}.py

if [ -f "${HOME}/.gef-${tag}.py" ]; then
    echo "source ~/.gef-${tag}.py" > ~/.gdbinit
    exit 0
else
    echo "GEF was not properly downloaded"
    exit 2
fi

官方版本里面缺少-X utf8会出错。
3.去github下载一键包,如:
https://github.com/bsauce/kernel-exploit-factory/tree/main/CVE-2017-11176
注意start.sh里面的-enable-kvm要去掉,因为windows不支持。
4.在msys2 ucrt64里面运行start.sh
5.打开另一个窗口,运行gdb_kernel.sh
在这里插入图片描述

说些什么吧!

utterances