Share
## https://sploitus.com/exploit?id=72F7BA9B-C64E-59DB-AA7D-7D0000A94B51
# trinity-2.0-lpe
Local privilege escalation exploit chaining three vulnerable signed drivers: TEACCESS.sys (MSR read for KASLR bypass and VAโ†’PA translation), ADV64DRV.sys (physical memory read), and PhyMem.sys (physical memory write).Tested on Windows 10 x64. Pure BYOVD โ€“ no admin required for the primitives.
## Compile

Open a x64 Native compiler(Visual Studio Code Compiler) Command Prompt and run:

โ€‹```
cl /nologo /O2 exploit.c /Fe:exploit.exe /link advapi32.lib
โ€‹```

## Demo

Watch the exploit demo: https://youtu.be/YuI_4W1oiB4

## Run

โ€‹```
exploit.exe
โ€‹```

Run from an normal cmd

## Write-up
https://medium.com/@haider303mustafa/teaccess-sys-adv64drv-sys-phymem-sys-kaslr-bypass-to-system-token-theft-69441310b7f4?sharedUserId=haider303mustafa