Cracked5pider / eop24-26229Links
A firebeam plugin that exploits the CVE-2024-26229 vulnerability to perform elevation of privilege from a unprivileged user
☆41Updated last year
Alternatives and similar repositories for eop24-26229
Users that are interested in eop24-26229 are comparing it to the libraries listed below
Sorting:
- EmbedExeLnk by x86matthew modified by d4rkiZ☆41Updated 2 years ago
- ☆100Updated last year
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆50Updated 7 months ago
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆61Updated last year
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.☆64Updated 2 years ago
- Toolset to manipulate RPC clients by finding delayed services and masquerading as them☆88Updated 2 weeks ago
- lsassdump via RtlCreateProcessReflection and NanoDump☆83Updated 10 months ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆101Updated 2 years ago
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆56Updated 3 months ago
- Simple ETW unhook PoC. Overwrites NtTraceEvent opcode to disable ETW at Nt-function level.☆48Updated last year
- ☆30Updated 5 months ago
- A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike☆149Updated last month
- Rust implementation of phantom persistence technique documented in https://blog.phantomsec.tools/phantom-persistence☆54Updated 2 months ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆84Updated last year
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆23Updated last year
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆67Updated last year
- Select any exported function in a dll as the new dll's entry point.☆81Updated 10 months ago
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆128Updated 7 months ago
- Shellcode Loader Utilizing ETW Events☆65Updated 6 months ago
- Less sugar (entropy) for your binaries☆34Updated 5 months ago
- ☆88Updated last year
- converts sRDI compatible dlls to shellcode☆30Updated 7 months ago
- Beacon Debugger☆54Updated 10 months ago
- Cobalt Strike UDRL for memory scanner evasion.☆51Updated last year
- This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".☆86Updated 2 years ago
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated 2 years ago
- Threadless shellcode injection tool☆67Updated last year
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆65Updated last week
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆30Updated 7 months ago
- Linker for Beacon Object Files☆127Updated last month