π Orange Tsai EventViewer RCE
β197Apr 29, 2022Updated 4 years ago
Alternatives and similar repositories for EventViewer-UACBypass
Users that are interested in EventViewer-UACBypass are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- C# loader that copies a chunk at the time of the shellcode in memory, rather that all at onceβ23Jul 14, 2022Updated 3 years ago
- UAC Bypass By Abusing Kerberos Ticketsβ515Aug 10, 2023Updated 2 years ago
- Beacon Object File implementation of Event Viewer deserialization UAC bypassβ132May 6, 2022Updated 4 years ago
- Shellcode reflective DLL injection in Rustβ30May 3, 2026Updated last month
- Rust procedural macro to insert a few asm! calls full of junk instructions in between every line of code.β13May 27, 2023Updated 3 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits β’ AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layerβ553Feb 13, 2024Updated 2 years ago
- Persistence by writing/reading shellcode from Event Logβ378May 27, 2022Updated 4 years ago
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.β626Jan 2, 2025Updated last year
- Standalone Go implementation of Metasploit's "db_nmap" and "db_import" commands.β19Nov 6, 2024Updated last year
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Direβ¦β885Feb 3, 2024Updated 2 years ago
- Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).β823Dec 14, 2023Updated 2 years ago
- RunasCs - Csharp and open version of windows builtin runas.exeβ1,399Jul 12, 2024Updated last year
- leaking net-ntlm with webdavβ25Feb 23, 2021Updated 5 years ago
- Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.β316Jul 8, 2022Updated 3 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits β’ AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- XOR decrypting shellcode using the GPU with OpenCL. Original PoC adopted by e.g. CoffeeLoader, GpuGate.β126May 22, 2025Updated last year
- Beacon Object File Loaderβ296Dec 3, 2023Updated 2 years ago
- A C# tool with more flexibility to customize scheduled task for both persistence and lateral movement in red team operationβ18Dec 18, 2024Updated last year
- A beacon object file implementation of PoolParty Process Injection Technique.β451Dec 21, 2023Updated 2 years ago
- InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assemβ¦β754Jul 22, 2023Updated 2 years ago
- A BOF that runs unmanaged PEs inlineβ702Oct 23, 2024Updated last year
- Weaponizing for privileged file writes bugs with PrintNotify Serviceβ136May 17, 2022Updated 4 years ago
- Creating a repository with all public Beacon Object Files (BoFs)β644Mar 2, 2026Updated 3 months ago
- You shall passβ270Jul 16, 2022Updated 3 years ago
- GPU virtual machines on DigitalOcean Gradient AI β’ AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijackingβ288Jun 8, 2023Updated 3 years ago
- In-memory sleep encryption and heap encryption for Go applications through a shellcode function.β40Jan 14, 2024Updated 2 years ago
- UAC bypass by abusing RPC and debug objects.β632Oct 19, 2023Updated 2 years ago
- Various Cobalt Strike BOFsβ776Oct 16, 2022Updated 3 years ago
- β248May 5, 2024Updated 2 years ago
- Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Techniqueβ160Nov 7, 2023Updated 2 years ago
- Windows Privilege Escalationβ109Aug 16, 2024Updated last year
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader featureβ100Feb 28, 2023Updated 3 years ago
- Collection of remote authentication triggers in C#β533May 15, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer β’ AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Fileless atexec, no more need for port 445β411Mar 28, 2024Updated 2 years ago
- Recovering NTLM hashes from Credential Guardβ388Dec 26, 2022Updated 3 years ago
- Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).β596Mar 19, 2024Updated 2 years ago
- A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.β813Jun 16, 2026Updated last week
- β153Jan 6, 2023Updated 3 years ago
- Dominate Active Directory with PowerShell.β1,190Nov 28, 2025Updated 7 months ago
- Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF)β320Nov 9, 2021Updated 4 years ago