Like0x / SharpBlockLinks
A method of bypassing EDR's active projection DLL's by preventing entry point exection
☆24Updated 4 years ago
Alternatives and similar repositories for SharpBlock
Users that are interested in SharpBlock are comparing it to the libraries listed below
Sorting:
- ☆46Updated 4 years ago
- MSSQL CLR for pentest.☆54Updated last year
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆77Updated 2 years ago
- command execute without 445 port☆52Updated 3 years ago
- Search msDS-AllowedToActOnBehalfOfOtherIdentity☆35Updated 3 years ago
- ☆24Updated 3 months ago
- resource-based constrained delegation RBCD☆45Updated 3 years ago
- ☆34Updated 5 months ago
- AddDefenderExclusions Beacon Object File☆41Updated 2 years ago
- CVE-2020-1472 C++☆83Updated 2 years ago
- query specific user and login IP from remote machine☆17Updated 2 years ago
- 通过websocket在IIS8(Windows Server 2012)以上实现socks5代理☆89Updated last year
- ☆49Updated 2 years ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user; Adding the sam_the_admin_maq when MachineAccoun…☆22Updated last year
- CrackMapExec extension module/protocol support☆42Updated last year
- dump lsass☆37Updated 3 years ago
- cmd2shellcode☆79Updated 4 years ago
- Cobalt Strike BOF that Add a user to localgroup by samr☆131Updated 2 years ago
- PortBender修改为exe版本☆28Updated 2 years ago
- Bypass EDR Create TaskServers☆37Updated 2 years ago
- Beacon Object File implementation of pwn1sher's KillDefender☆66Updated 3 years ago
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆49Updated 2 years ago
- ☆31Updated last year
- 在权限足够的情况下弹出system权限的cmd命令行,包含exe和dll两种文件类型,可用于一些可能存在本地提权漏洞的测试。☆33Updated 3 years ago
- PrintSpoofer的反射dll实现,结合Cobalt Strike使用☆88Updated 3 years ago
- 利用RPC服务,内网批量探测Windows出网☆14Updated 3 years ago
- Cobalt Strike BOF that Add an admin user☆77Updated 2 years ago
- Automatically parse Malleable C2 profiled into CrossC2 rebinding library source code☆21Updated 2 years ago
- ☆35Updated 3 years ago
- 批量检查远程桌面密码或ntlm是否正确☆41Updated 4 years ago