Cracked5pider / eop24-26229Links
A firebeam plugin that exploits the CVE-2024-26229 vulnerability to perform elevation of privilege from a unprivileged user
☆41Updated last year
Alternatives and similar repositories for eop24-26229
Users that are interested in eop24-26229 are comparing it to the libraries listed below
Sorting:
- EmbedExeLnk by x86matthew modified by d4rkiZ☆41Updated 2 years ago
- lsassdump via RtlCreateProcessReflection and NanoDump☆83Updated 11 months ago
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.☆64Updated 2 years ago
- A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.☆80Updated 4 months ago
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆61Updated last year
- Toolset to manipulate RPC clients by finding delayed services and masquerading as them☆93Updated last month
- Less sugar (entropy) for your binaries☆34Updated 2 weeks ago
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆50Updated 7 months ago
- ☆100Updated last year
- A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike☆158Updated last month
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆57Updated 4 months ago
- Rust implementation of phantom persistence technique documented in https://blog.phantomsec.tools/phantom-persistence☆54Updated 3 months ago
- This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".☆86Updated 2 years ago
- Windows AppLocker Driver (appid.sys) LPE☆66Updated last year
- Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH☆117Updated 3 weeks ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆84Updated last year
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆51Updated 4 months ago
- ☆22Updated 7 months ago
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆131Updated 7 months ago
- Threadless shellcode injection tool☆67Updated last year
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆85Updated 2 years ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆102Updated 2 years ago
- ☆98Updated last year
- NailaoLoader: Hiding Execution Flow via Patching☆20Updated 6 months ago
- Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.☆36Updated last month
- Shellcode Loader Utilizing ETW Events☆65Updated 6 months ago
- ☆32Updated 6 months ago
- Beacon Debugger☆54Updated 10 months ago
- Linker for Beacon Object Files☆128Updated this week
- "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…☆26Updated last year