bytecode77 / slui-file-handler-hijack-privilege-escalation

Related projects ⓘ

Alternatives and complementary repositories for slui-file-handler-hijack-privilege-escalation

• mdsecactivebreach / Browser-ExternalC2
  External C2 Using IE COM Objects
  ☆97Updated 5 years ago
• hoangprod / DanSpecial
  Weaponizing Gigabyte driver for priv escalation and bypass PPL
  ☆68Updated 5 years ago
• w4fz5uck5 / LonelyALPC-BypassUAC
  Lonely x64 binary to Bypass Win10 UAC utilizing ALPC method with [command line]
  ☆31Updated last year
• d35ha / PE2Shellcode
  Convert PE files to a shellcode
  ☆73Updated 4 years ago
• slyd0g / SK8RAT
  C++ implant that interfaces with a SK8PARK server
  ☆47Updated 3 years ago
• leoloobeek / COMRunner
  A simple COM server which provides a component to run shellcode
  ☆132Updated 4 years ago
• ewilded / PPID_spoof
  An example of how to spawn a process with a spoofed parent PID (Visual C++)
  ☆27Updated 5 years ago
• JohnWoodman / stealthInjector
  Injects shellcode into remote processes using direct syscalls
  ☆75Updated 3 years ago
• homjxi0e / ReaCOM
  ReaCOM has got a lot of tools to use and is related to component object model
  ☆73Updated 4 years ago
• itm4n / CDPSvcDllHijacking
  Windows 10 CDPSvc DLL Hijacking - From LOCAL SERVICE to SYSTEM
  ☆113Updated 4 years ago
• checkymander / CoreSploit
  Initial Commit of Coresploit
  ☆55Updated 3 years ago
• 3gstudent / Code-Execution-and-Process-Injection
  Powershell to CodeExecution and ProcessInjection
  ☆64Updated 7 years ago
• elddy / Windows-NTAPI-Injector
  Inject shellcode to process using Windows NTAPI for bypassing EDRs and Antiviruses
  ☆40Updated 3 years ago
• rxwx / cs-rdll-ipc-example
  Example code for using named pipe output with beacon ReflectiveDLLs
  ☆111Updated 4 years ago
• aaaddress1 / sakeInject
  Windows PE - TLS (Thread Local Storage) Injector in C/C++
  ☆103Updated 3 years ago
• apt69 / RibeyeSpecial
  medium-rare
  ☆27Updated 5 years ago
• panagioto / SyscallHide
  Create a Run registry key with direct system calls. Inspired by @Cneelis's Dumpert and SharpHide.
  ☆74Updated 4 years ago
• ambray / ProcessHollowing
  Simple Process Hollowing in C#
  ☆67Updated 7 years ago
• Sts0mrg0 / TinyNuke
  Botnet system from deep-web Russians forums. Tiny Nuke!
  ☆88Updated 7 years ago
• EgeBalci / Hook_API
  Assembly block for hooking windows API functions.
  ☆81Updated 5 years ago
• RedLectroid / APIunhooker
  C++ function that will automagically unhook a specified Windows API
  ☆60Updated 4 years ago
• jackullrich / TRunPE
  A modified RunPE (process hollowing) technique avoiding the usage of SetThreadContext by appending a TLS section which calls the original…
  ☆92Updated 5 years ago
• N4kedTurtle / HellsGatePoC
  ☆49Updated 4 years ago
• plackyhacker / Unhook-BitDefender
  Unhooks Bit Defender from NTDLL and KERNELBASE using a classic technique.
  ☆53Updated last year
• badBounty / directInjectorPOC
  Small POC written in C# that performs shellcode injection on x64 processes using direct syscalls as a way to bypass user-land EDR hooks.
  ☆83Updated 4 years ago
• NtRaiseHardError / AntiHook
  PoC designed to evade userland-hooking anti-virus.
  ☆85Updated 5 years ago
• elastic / PPLGuard
  ☆67Updated last year