kernelpop is a framework for performing automated kernel vulnerability enumeration and exploitation on the following operating systems:
Windows (coming soon)
Since it seems like this project is getting some clones / views, I should say this is a work in progress. I'm taking class and working fulltime so getting programming time is sporadic. That said, I am actively maintaining and adding features. Please let me know if you find any issues with the project.
default mode runs with the command
python3 kernelpop.py . This processes information about the host kernel and compares it to the known kernel exploits available to the program. It then outputs a list of potentially useful vulnerabilities and attached exploits.
exploit mode is run with the
-e flag. This dynamically compiles and runs the exploit source code with stdio interactions inside the program! It can catch interrupts from short-stopped attempts as well
brute-enumeration mode performs the same checks as the default mode, but then goes beyond and checks the computer for exploit prerequisites to see if the operating system is set up in the required vulnerable state for successful exploitation.
input mode allows you to perform enumeration with just the output of a
uname -a command, which makes it useful as a host-side only enumeration tool.