BorjaMerino / Windows-One-Way-Stagers
Windows Stagers to circumvent restrictive network environments
☆63Updated 2 months ago
Related projects ⓘ
Alternatives and complementary repositories for Windows-One-Way-Stagers
- A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…☆87Updated 5 years ago
- A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…☆42Updated 3 years ago
- ReaCOM has got a lot of tools to use and is related to component object model☆73Updated 4 years ago
- ☆37Updated 5 years ago
- Source code for HppDLL - local password dumping using MsvpPasswordValidate hooks☆1Updated 4 years ago
- Privesc through import of Sheduled tasks + Hardlinks - CVE-2019-1069☆34Updated 5 years ago
- Initial Commit of Coresploit☆55Updated 3 years ago
- Port of Invoke-Excel4DCOM☆100Updated 5 years ago
- Create a Run registry key with direct system calls. Inspired by @Cneelis's Dumpert and SharpHide.☆74Updated 4 years ago
- Shim database persistence (Fin7 TTP)☆36Updated 4 years ago
- F# Implementation to spawn shellcode☆47Updated 6 years ago
- Exercises for C# Workshop at Wild West Hackin' Fest 2018 & 2019.☆64Updated 5 years ago
- ☆93Updated 6 years ago
- ☆45Updated 6 years ago
- Proxy system calls over an RPC channel☆96Updated 2 years ago
- Suite of Shellcode Running Utilities☆106Updated 4 years ago
- C++ POC code for the wlbsctrl.dll hijack on IKEEXT☆53Updated 5 years ago
- Public documents related to my talk "Bypass Windows Exploit Guard ASR" at Offensive Con 2019.☆93Updated 5 years ago
- C# Shellcode Runner to execute shellcode via CreateRemoteThread and SetThreadContext to evade Get-InjectedThread☆119Updated 5 years ago
- ☆51Updated 5 years ago
- Implementation of b4rtiks's SharpMiniDump using NTFS transactions to avoid writting the minidump to disk and exfiltrating it via HTTPS us…☆68Updated 4 years ago
- POC for NetworkService PrivEsc☆123Updated 4 years ago
- adding a backdooruser using win32api☆79Updated 4 years ago