SafeBreach-Labs / WindowsDowndateLinks
A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities
☆680Updated 10 months ago
Alternatives and similar repositories for WindowsDowndate
Users that are interested in WindowsDowndate are comparing it to the libraries listed below
Sorting:
- Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in…☆513Updated last year
- Simulate the behavior of AV/EDR for malware development training.☆537Updated last year
- Because AV evasion should be easy.☆800Updated 9 months ago
- EDR Lab for Experimentation Purposes☆1,344Updated 2 months ago
- Complete list of LPE exploits for Windows (starting from 2023)☆831Updated last month
- Dump cookies and credentials directly from Chrome/Edge process memory☆1,325Updated 3 weeks ago
- HookChain: A new perspective for Bypassing EDR Solutions☆562Updated 8 months ago
- A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the …☆1,746Updated 10 months ago
- A set of fully-undetectable process injection techniques abusing Windows Thread Pools☆1,175Updated last year
- A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfve…☆569Updated last year
- LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113☆500Updated 8 months ago
- Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry☆433Updated last year
- Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…☆556Updated 3 months ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆717Updated last month
- AV/EDR Lab environment setup references to help in Malware development☆402Updated 7 months ago
- Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes☆1,008Updated 2 years ago
- Automated DLL Sideloading Tool With EDR Evasion Capabilities☆491Updated last year
- Fully decrypt App-Bound Encrypted (ABE) cookies, passwords & payment methods from Chromium-based browsers (Chrome, Brave, Edge) - all in …☆1,030Updated 3 weeks ago
- Automated Multi UAC BYPASS for win10|win11|win12-pre-release|ws2019|ws2022☆450Updated 10 months ago
- Unorthodox and stealthy way to inject a DLL into the explorer using icons☆327Updated 4 months ago
- ☆507Updated last year
- Centralized resource for listing and organizing known injection techniques and POCs☆625Updated last month
- A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.☆423Updated last year
- ☆584Updated 3 months ago
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆1,197Updated last year
- ☆401Updated 9 months ago
- Protected Process Dumper Tool☆565Updated 2 years ago
- Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC☆379Updated 8 months ago
- Real fucking shellcode encryptor & obfuscator tool☆937Updated last week
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆615Updated 4 months ago