b1-team / superman
🤖 Kill The Protected Process 🤖
☆435Updated 5 months ago
Related projects ⓘ
Alternatives and complementary repositories for superman
- 🎃 PumpBin is an Implant Generation Platform.☆265Updated 4 months ago
- 免杀学习笔记☆212Updated last year
- Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST☆708Updated last year
- not a reverse-engineered version of the Cobalt Strike Beacon☆335Updated 7 months ago
- Windows Token Stealing Expert☆449Updated 11 months ago
- windows-rs shellcode loaders☆283Updated 4 months ago
- Local privilege escalation via PetitPotam (Abusing impersonate privileges).☆411Updated last year
- New generation of wmiexec.py☆1,006Updated 2 weeks ago
- HVNC for Cobalt Strike☆1,163Updated 11 months ago
- A command and control framework written in rust.☆281Updated last month
- PrintNotifyPotato☆501Updated last year
- CPP AV/EDR Killer☆357Updated 11 months ago
- Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver☆241Updated 4 months ago
- Open repository for learning dynamic shellcode loading (sample in many programming languages)☆222Updated 3 months ago
- Go shellcode loader that combines multiple evasion techniques☆352Updated last year
- A Windows potato to privesc☆343Updated 2 months ago
- Abuse Impersonate Privilege from Service to SYSTEM like other potatoes do☆365Updated last year
- Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.☆283Updated 7 months ago
- Proxylogon & Proxyshell & Proxyoracle & Proxytoken & All exchange server history vulns summarization :)☆512Updated 11 months ago
- kill anti-malware protected processes ( BYOVD) (Microsoft Won )☆901Updated last year
- A tool for creating hidden accounts using the registry || 一个使用注册表创建隐藏帐户的工具☆430Updated 2 years ago
- PoC for the Untrusted Pointer Dereference in the ks.sys driver☆206Updated last week
- link is a command and control framework written in rust☆562Updated 3 years ago
- UAC Bypass By Abusing Kerberos Tickets☆480Updated last year
- MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.☆492Updated 3 months ago
- CrossC2 developed based on the Cobalt Strike framework can be used for other cross-platform system control. CrossC2Kit provides some inte…☆210Updated last year