aazhuliang / CVE-2021-31956-EXP
☆40Updated 3 years ago
Alternatives and similar repositories for CVE-2021-31956-EXP:
Users that are interested in CVE-2021-31956-EXP are comparing it to the libraries listed below
- Just another version of the custom stack call from Proxy-Function-Calls-For-ETwTI☆31Updated last year
- ☆20Updated 4 years ago
- 从admin冲到TrustedInstaller☆17Updated 2 years ago
- Kernel file/process/object tool☆64Updated 3 years ago
- 针对于AzureAttestService服务的本地提权Eop,微软表示已经进行修复☆2Updated 2 years ago
- LPE of CVE-2024-26230☆22Updated 5 months ago
- ☆57Updated last year
- BOF/COFF obj file to PIC(shellcode). by golang☆37Updated 2 years ago
- x64 version☆30Updated 3 years ago
- Windows Etw LPE☆50Updated 3 years ago
- ☆15Updated 2 years ago
- ☆50Updated 4 years ago
- Windows Defender VDM lua collections☆47Updated 2 years ago
- DLL Unhooking☆12Updated 3 years ago
- Files for http://deniable.org/windows/windows-callbacks☆24Updated 4 years ago
- Windows Kernel Knowledge && Collect Resources on the wire && Nothing innovation by myself &&☆55Updated last month
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆21Updated 4 years ago
- Proofs-Of-360Security Sandbox Escape☆10Updated 2 years ago
- ☆80Updated 3 years ago
- ☆26Updated 3 years ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆21Updated 3 years ago
- ☆36Updated 4 years ago
- 横向移动三剑客 ( Lateral movement tools)☆29Updated 3 years ago
- ☆11Updated 4 years ago
- ☆74Updated 3 years ago
- ☆19Updated last year
- POC of PPID spoofing using NtCreateUserProcess with syscalls to create a suspended process and performing process injection by overwritti…☆39Updated 3 years ago
- golang implementation of Syswhisper2/Syswhisper3☆23Updated 2 years ago
- StenographyShellcodeLoader☆42Updated 4 years ago
- impersonate trustedinstaller by fiddling with tokens☆17Updated 3 years ago