9bie / BOFRunPortable
BOF内存运行exe
☆26Updated last year
Alternatives and similar repositories for BOFRunPortable:
Users that are interested in BOFRunPortable are comparing it to the libraries listed below
- Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.☆23Updated 10 months ago
- RPC 调用添加ssp扩展dump lsass☆17Updated 2 years ago
- Load CLR to get RWX 通过加载clr在自身内存中产生rwx空间☆22Updated 2 years ago
- MSSQL CLR for pentest.☆54Updated last year
- CrackMapExec extension module/protocol support☆42Updated last year
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆41Updated last year
- c/s网络准入平台☆20Updated 2 years ago
- ☆30Updated last year
- Bypass EDR Create TaskServers☆36Updated 2 years ago
- Silently Install Chrome Extension For Persistence☆49Updated 7 months ago
- Rust 重构的 sRDI☆14Updated 5 months ago
- 利用RPC服务,内网批量探测Windows出网☆14Updated 2 years ago
- query specific user and login IP from remote machine☆17Updated 2 years ago
- ☆39Updated last year
- ☆31Updated last year
- ☆45Updated 3 years ago
- command execute without 445 port☆52Updated 2 years ago
- Golang implement winrm client with pass the hash☆31Updated 9 months ago
- 一个demo☆23Updated 10 months ago
- 重构Beacon☆15Updated 5 months ago
- desktop screenshot☆29Updated last year
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆41Updated last year
- ☆17Updated last year
- ☆15Updated last year
- 在权限足够的情况下弹出system权限的cmd命令行,包含exe和dll两种文件类型,可用于一些可能存在本地提权漏洞的测试。☆33Updated 2 years ago
- 一个普通的BOF用来BypassUAC☆18Updated 10 months ago
- CVE-2021-42287/CVE-2021-42278 exploits in powershell☆37Updated 2 years ago
- 免杀计划任务进行权限维持,过主流杀软。 A schtask tool bypass anti-virus☆67Updated 2 years ago
- 利用EFSRPC协议批量探测出网☆65Updated last year
- CobaltStrike Reflective Dll Source☆19Updated 3 years ago