boku7 / x64win-AddRdpAdminShellcodeLinks
64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"
☆40Updated 4 years ago
Alternatives and similar repositories for x64win-AddRdpAdminShellcode
Users that are interested in x64win-AddRdpAdminShellcode are comparing it to the libraries listed below
Sorting:
- AmsiHook is a project I created to figure out a bypass to AMSI via function hooking.☆66Updated 5 years ago
- A simple injector that uses LoadLibraryA☆18Updated 5 years ago
- Small POC for process ghosting☆39Updated 3 years ago
- JALSI - Just Another Lame Shellcode Injector☆30Updated 4 years ago
- (Sim)ulate (Ba)zar Loader☆29Updated 4 years ago
- Injects shellcode into remote processes using direct syscalls☆78Updated 4 years ago
- RDPThief donut shellcode inject into mstsc☆87Updated 4 years ago
- Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used☆92Updated 3 years ago
- I used this to see if an EDR is running in Safe Mode☆37Updated 4 years ago
- A .NET binary loader that bypasses AMSI☆45Updated 3 years ago
- Ransoblin (Ransomware Bokoblin)☆18Updated 4 years ago
- Recreating and reviewing the Windows persistence methods☆39Updated 3 years ago
- Run PowerShell command without invoking powershell.exe☆35Updated 3 years ago
- A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/☆31Updated last year
- A C implementation of the Sektor7 "A Thief" Windows privesc technique.☆65Updated 3 years ago
- Execute Mimikatz with different technique☆51Updated 3 years ago
- C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.☆37Updated 3 years ago
- Making Shellcode fully undetectable using uuid☆23Updated 4 years ago
- Adapt practically persistence steadiness strategies working at Windows 10 utilized by sponsored nation-state threat actors, as Turla, Pro…☆22Updated 4 years ago
- Bypass Windows defender syscall☆19Updated 4 years ago
- ☆55Updated 3 years ago
- Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.☆111Updated 3 years ago
- Stealthy Loader-cum-dropper/stage-1/stager targeting Windows10☆37Updated 2 years ago
- C++ implant that interfaces with a SK8PARK server☆49Updated 4 years ago
- (PoC) Tiny Excel BIFF8 Generator, to Embedded 4.0 Macros in xls files without Excel.☆43Updated 4 years ago
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆54Updated 4 years ago
- Just another casual shellcode native loader☆24Updated 3 years ago
- Core bypass Windows Defender and execute any binary converted to shellcode☆43Updated 3 years ago
- Another AMSI bypass - but in C++.☆23Updated 2 years ago
- XOR crypt/decrypt using C#☆12Updated 4 years ago