Reattempt of BlueHammer disclosed in April 2026
☆68May 11, 2026Updated 2 months ago
Alternatives and similar repositories for BlueHammer
Users that are interested in BlueHammer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Analysis and detection engineering for the BlueHammer Windows Defender local privilege escalation vulnerability. This repo includes bug f…☆95Apr 8, 2026Updated 3 months ago
- arm64 linux position-independent shellcode framework☆31Dec 12, 2025Updated 7 months ago
- A Beacon Object File suite for Microsoft SQL Server that speaks TDS 7.4 on the wire itself☆97Apr 9, 2026Updated 3 months ago
- A Cobalt Strike Beacon Object File that exploits the BlueHammer vulnerability that to obtain a copy of the SAM database.☆166Apr 15, 2026Updated 2 months ago
- A newly discovered vulnerable driver, pstrip64.sys (CVE-2026-29923) allows an unprivileged user to escalate privileges to SYSTEM via a cr…☆25Apr 11, 2026Updated 3 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Havoc BOF implementation of BYOVD attack to terminate PPL-protected EDR processes using a signed Microsoft kernel driver.☆39Apr 6, 2026Updated 3 months ago
- Reimplementing Havoc Pro Runtime Channel Switching and Cobalt Strike UDC2 features.☆46Jun 23, 2026Updated 3 weeks ago
- Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.☆62Feb 25, 2025Updated last year
- A modern alternative Web-UI for the Mythic Command and Control Server☆79Jul 3, 2026Updated last week
- CVE-2020-17103 adapted for C2 with split-binary SYSTEM callback☆38May 20, 2026Updated last month
- BOF POC of the DSCourier project / invoking WinGet via COM☆90Apr 23, 2026Updated 2 months ago
- Full exploit code for CVE-2026-40369 - A Windows kernel arbitrary write vulnerability that allows browser sandbox escape from all browser…☆254May 18, 2026Updated last month
- A Rust version of Mirage, a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆38Mar 6, 2025Updated last year
- Terms of Use Conditional Access M365 Evilginx Phishlet☆46Jun 23, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Async BOF to monitor and detect clipboard changes on a target system and return the clipboard contents.☆22May 5, 2026Updated 2 months ago
- Windows User-Mode Shellcode Development Framework (WUMSDF)☆144Updated this week
- Adaptix C2 agent using Crystal Palace PIC linker and PICO module system☆98Jun 7, 2026Updated last month
- Just a nice little shellcode loader using unconventional methods to avoid using signatured APIs☆23Jul 11, 2025Updated last year
- Mentally ill EtwTi parser☆74Jan 11, 2026Updated 6 months ago
- This script leverages CVE-2023046604 (Apache ActiveMQ) to generate a pseudo shell. The vulnerability allows for remote code execution due…☆18Jan 24, 2024Updated 2 years ago
- AdaptixC2 default beacon agent extended to support Crystal Palace loaders.☆62May 4, 2026Updated 2 months ago
- Cobalt Strike BOF to obtain location data☆26Jul 4, 2026Updated last week
- Microsoft Graph API post-exploitation framework with a browser-based GUI.☆51Apr 15, 2026Updated 3 months ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- rust port of pspy with support for process monitoring over dbus☆37Jan 4, 2026Updated 6 months ago
- A Crystal Palace shared library to resolve & perform syscalls☆61Oct 29, 2025Updated 8 months ago
- A credential extraction BOF for Veeam Backup and Replication and Veeam One☆78Jul 1, 2026Updated last week
- A fileless C2 framework written in pure x64 Linux Assembly with zero libc dependencies. Features dynamic protocol pivoting between raw IC…☆85Jun 5, 2026Updated last month
- Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1☆80Sep 8, 2025Updated 10 months ago
- Rusty Armory - Beacon Object Files (BOFs) in Rust (Codename: Armory)☆69Apr 3, 2026Updated 3 months ago
- Probably the easiest way to setup new beacon notifications in Cobalt Strike☆10Jan 7, 2022Updated 4 years ago
- AV/EDR killer using BYOVD technique☆45Sep 27, 2024Updated last year
- Fritter is a heavily modified fork of TheWover and Odzhan's Donut shellcode generator.☆243Jun 11, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- string encryption in Nim☆19Jun 15, 2024Updated 2 years ago
- A collection of position independent coding resources☆122Nov 15, 2025Updated 8 months ago
- Set of PoC to abuse Windows minifilters functionality☆93May 1, 2026Updated 2 months ago
- Rusty DoublePulsar - Cobalt Strike User-Defined Reflective Loader (UDRL) in Rust (Codename: DoublePulsar)☆113May 14, 2026Updated 2 months ago
- Rust implementation of phantom persistence technique documented in https://blog.phantomsec.tools/phantom-persistence☆65Jun 23, 2025Updated last year
- ☆42Nov 25, 2025Updated 7 months ago
- Shellcode loader that executes embedded Lua from Rust.☆125Dec 16, 2024Updated last year