nightmare-eclipse/miniplasma — explained in plain English
Analysis updated 2026-05-18
Study how a Windows Cloud Files filter driver race condition can be abused for privilege escalation.
Test whether a Windows machine is still vulnerable to a supposedly patched 2020 CVE.
Learn how security researchers document and demonstrate unpatched kernel-level flaws.
| nightmare-eclipse/miniplasma | zettpw/kmstools | uktrash/lsfg-desktop | |
|---|---|---|---|
| Stars | 349 | 363 | 394 |
| Language | C# | C# | C# |
| Setup difficulty | — | easy | easy |
| Complexity | — | 2/5 | 1/5 |
| Audience | researcher | ops devops | general |
Figures from each repo's GitHub metadata at analysis time.
MiniPlasma is a security research proof-of-concept demonstrating a privilege escalation vulnerability in Windows. Privilege escalation means a program running with limited permissions finds a way to gain full system-level access, in this case, spawning a command shell with SYSTEM privileges, the highest level of access on a Windows machine. The vulnerability exists in a Windows component called cldflt.sys (part of the Cloud Files filter driver). A Google Project Zero researcher named James Forshaw originally discovered and reported this issue to Microsoft in 2020 as CVE-2020-17103, and it was supposedly patched. However, the author of this repository re-investigated and found the same flaw is still present and exploitable, either the patch was never applied or was quietly rolled back. The exploit takes advantage of a race condition, meaning it works by timing two operations to happen simultaneously in a way the code doesn't safely handle. The readme notes the success rate can vary for this reason. The author believes all Windows versions are affected. This is a research tool used to demonstrate and document the unpatched issue.
A proof-of-concept exploit showing an unpatched Windows privilege escalation bug that lets a low-permission program gain full SYSTEM access.
Mainly C#. The stack also includes C#, Windows, cldflt.sys.
Mainly researcher.
This repo across BitVibe Labs
Verify against the repo before relying on details.