ProcessusT / EnumSSN
Enumerate SSN (System Service Numbers or Syscall ID) and syscall instruction address in ntdll module by parsing the PEB of the current process
☆20Updated last year
Alternatives and similar repositories for EnumSSN:
Users that are interested in EnumSSN are comparing it to the libraries listed below
- Docker container for running CobaltStrike 4.10☆36Updated 6 months ago
- Proof of Concept Exploit for CVE-2024-9465☆29Updated 5 months ago
- ☆28Updated last year
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆30Updated last year
- .NET port of Leron Gray's azbelt tool.☆26Updated last year
- Cobalt Strike BOFS☆15Updated last year
- POC for CVE-2024-3183 (FreeIPA Rosting)☆20Updated 7 months ago
- RCE PoC for Empire C2 framework <5.9.3☆26Updated last year
- Offensive Router for Windows Pivoting☆15Updated 3 weeks ago
- ☆18Updated 5 months ago
- A remote unauthenticated DOS POC exploit that targets the authentication implementation of Havoc.☆35Updated last year
- A simple rpc2socks alternative in pure Go.☆28Updated 8 months ago
- Generate AES128 and AES256 Kerberos keys from a given username, password, and realm☆17Updated 6 months ago
- Beacon Object Files used for Cobalt Strike☆17Updated last year
- Exploit for CVE-2024-5009☆13Updated 8 months ago
- C++ Code to perform a MiniDump of lsass.exe☆34Updated last year
- Make an Linux Kernel rootkit visible again.☆47Updated 3 weeks ago
- ☆19Updated 2 weeks ago
- Extension functionality for the NightHawk operator client☆27Updated last year
- A utility that can be used to launch an executable with a DLL injected☆18Updated last year
- Identify binaries with Authenticode digital signatures signed to an internal CA/domain☆38Updated last year
- in-process powershell runner for BRC4☆44Updated last year
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆33Updated last year
- .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…☆41Updated 7 months ago
- ECC Public Key Cryptography☆36Updated last year
- Yet Another Memory Analyzer for malware detection☆24Updated last year
- An improvement and a different approach to Mockingjay Self-Injection.☆34Updated 10 months ago
- ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.☆47Updated last year
- CVE-2024-29895 PoC - Exploiting remote command execution in Cacti servers using the 1.3.X DEV branch builds☆21Updated 10 months ago
- ☆17Updated 3 months ago