Wh04m1001 / MSIExecEoPLinks
Arbitrary File Delete in Windows Installer before 10.0.19045.2193
☆30Updated 2 years ago
Alternatives and similar repositories for MSIExecEoP
Users that are interested in MSIExecEoP are comparing it to the libraries listed below
Sorting:
- Exploit for Arbitrary File Move vulnerability in ZoneAlarm AV☆26Updated 2 years ago
- A method to execute shellcode using RegisterWaitForInputIdle API.☆54Updated 2 years ago
- ☆29Updated 2 years ago
- ☆88Updated 2 years ago
- Sliver agent rewritten in C++☆44Updated 9 months ago
- ☆40Updated 2 years ago
- Beacon Object File allowing creation of Beacons in different sessions.☆80Updated 3 years ago
- This is my own implementation of the Perun's Fart technique by Sektor7☆71Updated 3 years ago
- Beacon Object Files.☆35Updated last year
- Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.☆51Updated 3 years ago
- BYOVD collection☆23Updated last year
- this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…☆86Updated 2 years ago
- A simple C++ Windows tool to get information about processes exposing named pipes.☆37Updated 3 months ago
- .NET project for installing Persistence☆64Updated 3 years ago
- I have documented all of the AMSI patches that I learned till now☆72Updated 2 months ago
- Beacon Object Files (not Buffer Overflows)☆56Updated 2 years ago
- Get SYSTEM via SeDebugPrivilege☆20Updated 3 years ago
- DynamicSyscalls is a library written in .net resolves the syscalls dynamically (Has nothing to do with hooking/unhooking)☆65Updated 2 years ago
- ☆29Updated 2 years ago
- Various implementations for C# in memory execution. Assembly.Load() Assembly.LoadFile() AppDomain.ExecuteAssembly()☆34Updated 4 years ago
- Out-of-the-Box Tool to Obfuscate Excel XLS. Include Obfuscation & Hide for Cell Labels & BoundSheets☆48Updated 3 years ago
- ☆27Updated 2 years ago
- Slides and POC demo for my talk at Divizion Zero on EDR evasion titled "Evasion Adventures"☆28Updated 2 years ago
- Modified versions of the Cobalt Strike Process Injection Kit☆95Updated last year
- ☆70Updated 2 years ago
- Active Directory certificate abuse.☆38Updated 3 years ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆100Updated 2 years ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section☆104Updated last year
- SLib is a sandbox evasion library that implements some of the checks from https://evasions.checkpoint.com in C#☆65Updated last year
- A simple BOF that frees UDRLs☆120Updated 3 years ago