Alh4zr3d / ProcessInjectionPOCs
Proof-of-Concept code snippets for a variety of different process injection techniques
☆21Updated last year
Related projects: ⓘ
- ☆47Updated last year
- Code dump from PEN-300/OSEP updated 2022☆39Updated 2 years ago
- WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"☆114Updated 2 months ago
- Shellcode generation and encoding utility☆21Updated 2 years ago
- Python based Bloodhound data converter from the legacy pre 4.1 format to 4.1+ format☆51Updated 2 years ago
- ☆32Updated this week
- Payload Generation Framework☆84Updated 6 months ago
- Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"☆117Updated last month
- a port of privkit bof for havoc☆21Updated 9 months ago
- Identifies the bytes that Microsoft Defender flags on.☆75Updated 2 years ago
- ☆110Updated last year
- Bypass AMSI By Dividing files into multiple smaller files☆45Updated last year
- D/Invoke standalone shellcode runners☆35Updated 9 months ago
- A collection of code snippets built to assist with breaking chains.☆114Updated 4 months ago
- The Official Sliver Armory☆80Updated last month
- Tools I use on red team engagements and more☆26Updated 6 months ago
- C2 Infrastructure Automation☆82Updated last month
- Encodes a payload within a generated mock-CSS file☆55Updated last year
- A Python based ingestor for BloodHound☆81Updated last year
- ☆61Updated 4 years ago
- SeManageVolumePrivilege to SYSTEM☆61Updated 9 months ago
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆147Updated 9 months ago
- Brief writeup of post exploitation methodologies.☆17Updated 11 months ago
- Most Responder's configuration power in your hand.☆36Updated 6 months ago
- ☆82Updated 2 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆87Updated last year
- SeRestorePrivilege to SYSTEM☆71Updated 2 years ago
- A python script to automatically list vulnerable Windows ACEs/ACLs.☆42Updated 2 weeks ago
- Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs☆59Updated last year
- IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.☆83Updated 8 months ago