Octoberfest7 / KillDefender_BOFLinks
Beacon Object File implementation of pwn1sher's KillDefender
☆67Updated 3 years ago
Alternatives and similar repositories for KillDefender_BOF
Users that are interested in KillDefender_BOF are comparing it to the libraries listed below
Sorting:
- A wrapper of ldap_shell.py module which in ntlmrelayx☆62Updated 3 years ago
- A Custom CLR Assembly for MSSQL of the popular tool GodPotato☆80Updated 2 years ago
- ☆24Updated 6 months ago
- MSSQL CLR for pentest.☆55Updated 2 years ago
- Execute Remote Assembly with args passing and with AMSI and ETW patching .☆35Updated 3 months ago
- ASPX ShellCode Loader☆52Updated last year
- command execute without 445 port☆52Updated 3 years ago
- Load shellcode via syscall☆55Updated 4 years ago
- AddDefenderExclusions Beacon Object File☆40Updated 2 years ago
- ShellCodeLoader via DInvoke☆59Updated 4 years ago
- dump lsass☆37Updated 3 years ago
- resource-based constrained delegation RBCD☆45Updated 3 years ago
- dump lsass tool☆38Updated 3 years ago
- More EFS coerced authentication method with PetitPotam.py☆26Updated 2 years ago
- A Mimikatz For Only Extracting Login Passwords.(Bypasses Most AV's)☆58Updated 3 years ago
- ☆30Updated 2 years ago
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆54Updated 2 years ago
- ☆43Updated 2 years ago
- CVE-2023-21707 EXP☆28Updated 2 years ago
- Bypass EDR Create TaskServers☆36Updated 2 years ago
- Cobalt Strike BOF that Add an admin user☆78Updated 3 years ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆57Updated 2 years ago
- ☆46Updated last year
- load assembly executable file in memory☆41Updated 2 years ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆77Updated 2 years ago
- Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray☆46Updated 2 years ago
- ☆31Updated 2 years ago
- A method of bypassing EDR's active projection DLL's by preventing entry point exection☆24Updated 4 years ago
- Re-implement cmd.exe using windows api☆49Updated 2 years ago
- Cs-Sleep-Mask-Fiber☆18Updated 5 months ago