Alternatives and similar repositories for GamingServiceEoP

Users that are interested in GamingServiceEoP are comparing it to the libraries listed below

• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆73Updated 4 months ago
• xalicex / Killers
  Exploitation of process killer drivers
  ☆200Updated last year
• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆106Updated 6 months ago
• Slowerzs / PPLSystem
  ☆189Updated 11 months ago
• alfarom256 / LogMeInPoCHandleDup
  ☆63Updated last year
• Octoberfest7 / Secure_Stager
  An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution
  ☆187Updated 5 months ago
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆46Updated last year
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆164Updated 10 months ago
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆80Updated last year
• itm4n / PPLrevenant
  Bypass LSA protection using the BYODLL technique
  ☆158Updated 7 months ago
• NetSPI / BOF-PE
  An example reference design for a proposed BOF PE
  ☆163Updated 3 weeks ago
• CICADA8-Research / COMThanasia
  A set of programs for analyzing common vulnerabilities in COM
  ☆213Updated 8 months ago
• nettitude / Tartarus-TpAllocInject
  ☆184Updated last year
• xpn / CloudInject
  ☆110Updated 5 months ago
• rad9800 / FileRenameJunctionsEDRDisable
  ☆154Updated 5 months ago
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆148Updated last year
• WKL-Sec / dcomhijack
  Lateral Movement Using DCOM and DLL Hijacking
  ☆291Updated last year
• thiagopeixoto / winsos-poc
  A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries.
  ☆111Updated last year
• JanielDary / ImmoralFiber
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆261Updated 7 months ago
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆98Updated last year
• 0xthirteen / AssemblyHunter
  Find .net assemblies locally
  ☆113Updated 2 years ago
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆109Updated 8 months ago
• sec-consult / msiscan
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆118Updated 8 months ago
• gabriellandau / EDRSandblast-GodFault
  EDRSandblast-GodFault
  ☆261Updated last year
• zerozenxlabs / CVE-2023-36424
  Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation
  ☆127Updated last year
• Octoberfest7 / Enumprotections_BOF
  A BOF to enumerate system process, their protection levels, and more.
  ☆116Updated 5 months ago
• Mr-Un1k0d3r / AMSI-ETW-Patch
  Patch AMSI and ETW
  ☆239Updated last year
• exploits-forsale / 24h2-nt-exploit
  Exploit targeting NT kernel in 24H2 Windows Insider Preview
  ☆129Updated last year
• Z4kSec / IoctlHunter
  IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.
  ☆100Updated last year
• safedv / Rustic64
  64-bit, position-independent implant template for Windows in Rust.
  ☆125Updated 2 weeks ago