alfarom256 / LogMeInPoCHandleDupView external linksLinks
☆64Feb 5, 2024Updated 2 years ago
Alternatives and similar repositories for LogMeInPoCHandleDup
Users that are interested in LogMeInPoCHandleDup are comparing it to the libraries listed below
Sorting:
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆21Jan 25, 2022Updated 4 years ago
- Privilege escalation using the XAML diagnostics API (CVE-2023-36003)☆93Jan 11, 2024Updated 2 years ago
- ☆44Oct 16, 2023Updated 2 years ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section☆111Jul 15, 2023Updated 2 years ago
- Slide of my conference presentations☆14Sep 5, 2024Updated last year
- A simple BOF (Beacon Object File) to search files in the system☆15Dec 2, 2023Updated 2 years ago
- Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting☆363Dec 19, 2022Updated 3 years ago
- Sample Rust Hooking Engine☆36Apr 5, 2024Updated last year
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆247Jul 5, 2022Updated 3 years ago
- ☆20May 1, 2023Updated 2 years ago
- Async rust support for the reverse-engineered Crowdstrike Falcon protocol between the Sensor and cloud services☆17Mar 10, 2023Updated 2 years ago
- ☆200May 29, 2024Updated last year
- Windows Thread Pool Injection Havoc Implementation☆33Mar 23, 2024Updated last year
- Rewrite to fit my needs☆32Jul 20, 2024Updated last year
- Rusty Impersonate☆106Oct 15, 2025Updated 4 months ago
- Admin to Kernel code execution using the KSecDD driver☆264Apr 19, 2024Updated last year
- A process injection technique using only thread context manipulation☆41Dec 18, 2023Updated 2 years ago
- ☆563Feb 22, 2024Updated last year
- Encrypted shellcode Injection to avoid Kernel triggered memory scans☆407Sep 12, 2023Updated 2 years ago
- A Proof of Concept Rootkit Demonstrating Keylogging and Virtual File System (VFS) Capabilities☆76Sep 21, 2022Updated 3 years ago
- ☆38Jun 5, 2023Updated 2 years ago
- Compileable POC of namazso's x64 return address spoofer.☆50Jun 10, 2020Updated 5 years ago
- early cascade injection PoC based on Outflanks blog post, in rust☆62Nov 8, 2024Updated last year
- ☆290Jul 20, 2023Updated 2 years ago
- Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)☆259Jun 29, 2024Updated last year
- Corsair LL Access driver abuse☆24Apr 16, 2021Updated 4 years ago
- An advanced DKOM for drivers with "DRIVER_OBJECT"☆22Feb 19, 2023Updated 2 years ago
- A bunch of scripts and code i wrote.☆149Nov 7, 2024Updated last year
- Patching "signtool.exe" to accept expired certificates for code-signing.☆340Feb 2, 2026Updated last week
- ☆246Jul 31, 2024Updated last year
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆408Jan 11, 2026Updated last month
- Bypassing kernel patch protection runtime☆21Feb 19, 2023Updated 2 years ago
- BYOVD collection☆24Mar 20, 2024Updated last year
- HackSysExtremeVulnerableDriver exploits for latest Windows 10 version☆26Jan 13, 2026Updated last month
- ☆274Jan 14, 2023Updated 3 years ago
- Recovering NTLM hashes from Credential Guard☆374Dec 26, 2022Updated 3 years ago
- CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking☆285Jun 8, 2023Updated 2 years ago
- An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer☆539Feb 13, 2024Updated 2 years ago
- Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation☆128Mar 22, 2024Updated last year