Alh4zr3d / ProcessInjectionPOCs

Related projects: ⓘ

• xct / winssh
  ☆47Updated last year
• rootshooter / osep-code-dump-2022
  Code dump from PEN-300/OSEP updated 2022
  ☆39Updated 2 years ago
• OmriBaso / WTSImpersonator
  WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"
  ☆114Updated 2 months ago
• rootshooter / shellcoder
  Shellcode generation and encoding utility
  ☆21Updated 2 years ago
• szymex73 / bloodhound-convert
  Python based Bloodhound data converter from the legacy pre 4.1 format to 4.1+ format
  ☆51Updated 2 years ago
• pietermiske / RT-Survival-Guides
  ☆32Updated this week
• SYANiDE- / SuperSharpShooter
  Payload Generation Framework
  ☆84Updated 6 months ago
• sevagas / Advanced_Initial_access_in_2024_OffensiveX
  Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
  ☆117Updated last month
• p4p1 / havoc-privkit
  a port of privkit bof for havoc
  ☆21Updated 9 months ago
• t3hbb / DefenderCheck
  Identifies the bytes that Microsoft Defender flags on.
  ☆75Updated 2 years ago
• powerseb / PowerExtract
  ☆110Updated last year
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆45Updated last year
• FatCyclone / D-Pwn
  D/Invoke standalone shellcode runners
  ☆35Updated 9 months ago
• gh0x0st / OSEP-Breaking-Chains
  A collection of code snippets built to assist with breaking chains.
  ☆114Updated 4 months ago
• sliverarmory / armory
  The Official Sliver Armory
  ☆80Updated last month
• kyle41111 / RedTeamHelp
  Tools I use on red team engagements and more
  ☆26Updated 6 months ago
• Hacker-Hermanos / C2_INFRA_WORKSHOP_DEFCON32_RED_TEAM_VILLAGE
  C2 Infrastructure Automation
  ☆82Updated last month
• inb1ts / CSSHide
  Encodes a payload within a generated mock-CSS file
  ☆55Updated last year
• jazzpizazz / BloodHound.py-Kerberos
  A Python based ingestor for BloodHound
  ☆81Updated last year
• fashionproof / EnableAllTokenPrivs
  ☆61Updated 4 years ago
• xct / SeManageVolumeAbuse
  SeManageVolumePrivilege to SYSTEM
  ☆61Updated 9 months ago
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆147Updated 9 months ago
• Tarakhs / ToyingWithHellsGate
  Brief writeup of post exploitation methodologies.
  ☆17Updated 11 months ago
• nickvourd / Responder-Parser
  Most Responder's configuration power in your hand.
  ☆36Updated 6 months ago
• georgesotiriadis / MalwareDev
  ☆82Updated 2 years ago
• Tylous / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆87Updated last year
• xct / SeRestoreAbuse
  SeRestorePrivilege to SYSTEM
  ☆71Updated 2 years ago
• AetherBlack / abuseACL
  A python script to automatically list vulnerable Windows ACEs/ACLs.
  ☆42Updated 2 weeks ago
• Tylous / Mangle
  Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
  ☆59Updated last year
• Z4kSec / IoctlHunter
  IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.
  ☆83Updated 8 months ago