apt69 / COMahawk
Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322
☆350Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for COMahawk
- Code from this article: https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/☆170Updated 4 years ago
- CVE-2020-0683 - Windows MSI “Installer service” Elevation of Privilege☆339Updated 2 years ago
- A native backdoor module for Microsoft IIS (Internet Information Services)☆533Updated 4 years ago
- Shellcode wrapper with encryption for multiple target languages☆434Updated 7 years ago
- Convert Cobalt Strike profiles to modrewrite scripts☆583Updated last year
- cve-2020-0688☆322Updated last year
- A script to randomize Cobalt Strike Malleable C2 profiles and reduce the chances of flagging signature-based detection controls☆433Updated 2 years ago
- The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.☆465Updated 2 years ago
- Windows - Weaponizing privileged file writes with the Update Session Orchestrator service☆378Updated 4 years ago
- Cobalt Strike kit for Persistence☆466Updated 4 years ago
- Cobalt Strike Python API☆292Updated 2 years ago
- Cobalt Strike kit for Lateral Movement☆648Updated 4 years ago
- ☆347Updated 2 years ago
- A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …☆876Updated 3 years ago
- eBook "Bypassing AVS by C#.NET Programming" (Free Chapters only)☆464Updated last year
- Use CVE-2020-0668 to perform an arbitrary privileged file move operation.☆211Updated 4 years ago
- Aggressor scripts for use with Cobalt Strike 3.0+☆795Updated 2 years ago
- A Bind Shell Using the Fax Service and a DLL Hijack☆324Updated 4 years ago
- We developed GRAT2 Command & Control (C2) project for learning purpose.☆411Updated 3 years ago
- CVE-2019-1388 UAC提权 (nt authority\system)☆185Updated 5 years ago
- Custom Metasploit post module to executing a .NET Assembly from Meterpreter session☆341Updated 4 years ago
- Exploit Code for CVE-2020-1472 aka Zerologon☆383Updated 4 years ago
- Run shellcode from resource☆253Updated 3 years ago
- Process Injection☆752Updated 3 years ago
- Exchange your privileges for Domain Admin privs by abusing Exchange☆981Updated 4 years ago
- Aggressor scripts I've made for Cobalt Strike☆404Updated last year
- New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.☆905Updated 6 years ago