DimopoulosElias / alpc-mmc-uac-bypass
UAC Bypass with mmc via alpc
☆155Updated 5 years ago
Related projects: ⓘ
- A repository of some of my Windows 10 Device Guard Bypasses☆133Updated 7 years ago
- PoC for Privilege Escalation in Windows 10 Diagnostics Hub Standard Collector Service☆108Updated 6 years ago
- foolav successor - loads DLL, executable or shellcode into memory and runs it effectively bypassing AV☆108Updated 3 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆250Updated 5 years ago
- The PowerThIEf, an Internet Explorer Post Exploitation library☆130Updated 6 years ago
- ☆79Updated this week
- BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET☆143Updated 4 years ago
- Public documents related to my talk "Bypass Windows Exploit Guard ASR" at Offensive Con 2019.☆93Updated 5 years ago
- CVE-2018-8440 standalone exploit☆79Updated 5 years ago
- ☆132Updated this week
- ☆230Updated 6 years ago
- a tool to make it easy and fast to test various forms of injection☆172Updated 5 years ago
- Lateral Movement technique using DCOM and HTA☆228Updated last year
- Tool for injecting a "TCP Relay" managed assembly into unmanaged processes☆115Updated 5 years ago
- Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.☆155Updated 5 years ago
- A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.☆92Updated 6 years ago
- SharpBox is a C# tool for compressing, encrypting, and exfiltrating data to DropBox using the DropBox API.☆108Updated 3 years ago
- Reflective Polymorphism☆104Updated 6 years ago
- ☆86Updated this week
- ☆128Updated this week
- ☆92Updated 5 years ago
- APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )☆107Updated 6 years ago
- ☆85Updated this week
- PoC for persisting .NET payloads in Windows Notification Facility (WNF) state names using low-level Windows Kernel API calls.☆147Updated 5 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆75Updated 6 years ago
- ReaCOM has got a lot of tools to use and is related to component object model☆73Updated 4 years ago
- Use bitsadmin to maintain persistence and bypass Autoruns☆67Updated 7 years ago
- ☆168Updated this week
- DNSDelivery provides delivery and in memory execution of shellcode or .Net assembly using DNS requests delivery channel.☆146Updated 4 years ago
- A tool to run .Net DLLs from the command line☆100Updated 5 years ago