Like0x / SharpBlockLinks
A method of bypassing EDR's active projection DLL's by preventing entry point exection
☆24Updated 4 years ago
Alternatives and similar repositories for SharpBlock
Users that are interested in SharpBlock are comparing it to the libraries listed below
Sorting:
- MSSQL CLR for pentest.☆54Updated 2 years ago
- command execute without 445 port☆52Updated 3 years ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆78Updated 2 years ago
- ☆46Updated 4 years ago
- ☆34Updated 5 months ago
- resource-based constrained delegation RBCD☆45Updated 3 years ago
- ☆24Updated 4 months ago
- PortBender修改为exe版本☆28Updated 2 years ago
- AddDefenderExclusions Beacon Object File☆41Updated 2 years ago
- Search msDS-AllowedToActOnBehalfOfOtherIdentity☆35Updated 3 years ago
- CVE-2020-1472 C++☆83Updated 2 years ago
- 通过websocket在IIS8(Windows Server 2012)以上实现socks5代理☆89Updated last year
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆49Updated 2 years ago
- ☆49Updated 2 years ago
- CrackMapExec extension module/protocol support☆42Updated last year
- Beacon Object File implementation of pwn1sher's KillDefender☆67Updated 3 years ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user; Adding the sam_the_admin_maq when MachineAccoun…☆22Updated last year
- Cobalt Strike BOF that Add a user to localgroup by samr☆131Updated 2 years ago
- ☆31Updated last year
- dump lsass☆37Updated 3 years ago
- ASPX ShellCode Loader☆50Updated last year
- Automatically parse Malleable C2 profiled into CrossC2 rebinding library source code☆21Updated 2 years ago
- query specific user and login IP from remote machine☆17Updated 2 years ago
- Cobalt Strike BOF that Add an admin user☆77Updated 2 years ago
- RPC 调用添加ssp扩展dump lsass☆19Updated 3 years ago
- 在原项目上加上将找到的文件压缩打包上传oss,另外做了部分小修改。☆30Updated 4 years ago
- PrintSpoofer的反射dll实现,结合Cobalt Strike使用☆88Updated 3 years ago
- cmd2shellcode☆79Updated 4 years ago
- 利用EFSRPC协议批量探测出网☆66Updated last year
- Execute Remote Assembly with args passing and with AMSI and ETW patching .☆35Updated last month