boku7 / x64win-AddRdpAdminShellcode
64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"
☆40Updated 4 years ago
Alternatives and similar repositories for x64win-AddRdpAdminShellcode:
Users that are interested in x64win-AddRdpAdminShellcode are comparing it to the libraries listed below
- A simple injector that uses LoadLibraryA☆17Updated 4 years ago
- Just another casual shellcode native loader☆24Updated 3 years ago
- JALSI - Just Another Lame Shellcode Injector☆30Updated 3 years ago
- Bypass Windows defender syscall☆18Updated 3 years ago
- C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.☆35Updated 3 years ago
- Small POC for process ghosting☆39Updated 3 years ago
- (Sim)ulate (Ba)zar Loader☆29Updated 4 years ago
- NT AUTHORITY\SYSTEM☆39Updated 4 years ago
- Python 3 server used to control SK8RAT implant☆36Updated 4 years ago
- Another AMSI bypass - but in C++.☆23Updated last year
- Dell Driver EoP (CVE-2021-21551)☆32Updated 3 years ago
- A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…☆24Updated 2 years ago
- AmsiHook is a project I created to figure out a bypass to AMSI via function hooking.☆64Updated 4 years ago
- Recreating and reviewing the Windows persistence methods☆38Updated 3 years ago
- Stealthy Loader-cum-dropper/stage-1/stager targeting Windows10☆37Updated 2 years ago
- File Write Weapon for Privilege Escalation To get SYSTEM☆18Updated 4 years ago
- Execute shellcode with ZwCreateSection, ZwMapViewOfSection, ZwOpenProcess, ZwMapViewOfSection and ZwCreateThreadEx☆14Updated 4 years ago
- XOR crypt/decrypt using C#☆12Updated 4 years ago
- A C implementation of the Sektor7 "A Thief" Windows privesc technique.☆62Updated 3 years ago
- Collection of shellcode injection and execution techniques☆16Updated 3 years ago
- An attempt to make a LoadLibrary designed for offensive operations, in C# obviously.☆55Updated 3 years ago
- A repository filled with ideas to break/detect direct syscall techniques☆27Updated 3 years ago
- A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/☆31Updated last year
- I used this to see if an EDR is running in Safe Mode�☆36Updated 4 years ago
- Making Shellcode fully undetectable using uuid☆23Updated 3 years ago
- Bypass UAC elevation on Windows 8 (build 9600) & above.☆55Updated 2 years ago
- One gate to all syscalls!☆23Updated 3 years ago
- Extended Process List (Search functionality)☆29Updated 4 years ago
- Extracting Clear Text Passwords from mstsc.exe using API Hooking.☆16Updated 5 years ago
- Remove API hooks from a Beacon process.☆14Updated 3 years ago