FourCoreLabs / TrustedInstallerPOC

Related projects: ⓘ

• blue0x1 / uac-bypass-oneliners
  Collection of one-liners to bypass User Account Control (UAC) in Windows. These techniques exploit certain behavior in Windows applicatio…
  ☆83Updated 11 months ago
• AlteredSecurity / Disable-TamperProtection
  A POC to disable TamperProtection and other Defender / MDE components
  ☆169Updated 3 months ago
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆45Updated 2 months ago
• D1rkMtr / RecyclePersist
  ☆96Updated this week
• ghostpepper108 / Evasion
  ☆105Updated last year
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆51Updated last month
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆46Updated 6 months ago
• lsecqt / BSides-2024-Malware-Development-101-From-Zero-to-Non-Hero
  ☆23Updated 4 months ago
• Cracked5pider / CodeCave
  A bunch of scripts and code i wrote.
  ☆128Updated last month
• Z4kSec / IoctlHunter
  IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.
  ☆83Updated 8 months ago
• SaadAhla / VT-stealer
  VirusTotal Stealer is a DATA Exfiltration tool that exfitrate office documents and tunnel them over VirusTotal API to the Team Server
  ☆62Updated 11 months ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆109Updated 11 months ago
• EvilBytecode / Lifetime-AmsiBypass
  Lifetime AMSI bypass.
  ☆35Updated 2 months ago
• soufianetahiri / TeamsNTLMLeak
  Leak NTLM via Website tab in teams via MS Office
  ☆78Updated 5 months ago
• MalwareTech / HiddenDesktop
  Create and enumerate hidden desktops.
  ☆86Updated 9 months ago
• sensepost / mydumbedr
  ☆98Updated 7 months ago
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆92Updated 5 months ago
• mranv / adPentest
  Windows Active DIrectory Pentesting documentation.
  ☆16Updated 3 months ago
• RedSiege / Chromatophore
  Utilities for obfuscating shellcode
  ☆38Updated 2 months ago
• dr4k0nia / tooling-playground
  A collection of small scripts and tools for deobfuscation and malware analysis.
  ☆66Updated last year
• Cipher7 / havoc-PoolParty
  Windows Thread Pool Injection Havoc Implementation
  ☆26Updated 5 months ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆79Updated 2 months ago
• securifybv / BOFRyptor
  ☆113Updated 11 months ago
• itaymigdal / PichichiH0ll0wer
  Nim process hollowing loader
  ☆47Updated last month
• Offensive-Panda / DV_NEW
  This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
  ☆43Updated 4 months ago
• nmantani / PS-MOTW
  PS-MOTW: PowerShell scripts to set / show / remove MOTW (Mark of the Web)
  ☆33Updated 10 months ago
• OtterHacker / SetProcessInjection
  ☆142Updated 11 months ago
• NUL0x4C / DeleteShadowCopies
  Deleting Shadow Copies In Pure C++
  ☆111Updated last year
• MaorSabag / SideLoadingDLL
  Do some DLL SideLoading magic
  ☆72Updated last year
• Offensive-Panda / DefenseEvasionTechniques
  This comprehensive and central repository is designed for cybersecurity enthusiasts, researchers, and professionals seeking to stay ahead…
  ☆66Updated last week