chompie1337 / SIGRed_RCE_PoC
☆258Updated last year
Related projects: ⓘ
- CVE-2020-0796 Local Privilege Escalation POC☆242Updated 4 years ago
- Use CVE-2020-0668 to perform an arbitrary privileged file move operation.☆208Updated 4 years ago
- Exploit to SYSTEM for CVE-2021-21551☆236Updated 3 years ago
- A meterpreter extension for applying hooks to avoid windows defender memory scans☆237Updated 4 years ago
- Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)☆405Updated 3 years ago
- Proof-of-concept code for various bugs☆106Updated 5 months ago
- Cobalt Strike Python API☆291Updated 2 years ago
- Bring your own print driver privilege escalation tool☆241Updated 3 years ago
- Command line interface to dump LSASS memory to disk via SilentProcessExit☆435Updated 3 years ago
- Tools for discovery and abuse of COM hijacks☆282Updated 4 years ago
- Windows - Weaponizing privileged file writes with the Update Session Orchestrator service☆375Updated 4 years ago
- Python interpreter for Cobalt Strike Malleable C2 Profiles. Allows you to parse, build and modify them programmatically.☆262Updated 4 months ago
- CVE-2020-0683 - Windows MSI “Installer service” Elevation of Privilege☆336Updated 2 years ago
- CVE-2020-1206 Uninitialized Kernel Memory Read POC☆145Updated 4 years ago
- Executes position independent shellcode from an encrypted zip☆300Updated 3 years ago
- A Bind Shell Using the Fax Service and a DLL Hijack☆317Updated 4 years ago
- One Token To Rule Them All https://labs.mwrinfosecurity.com/blog/incognito-v2-0-released/☆142Updated 4 years ago
- poc for CVE-2020-1337 (Windows Print Spooler Elevation of Privilege)☆171Updated 4 years ago
- Custom Metasploit post module to executing a .NET Assembly from Meterpreter session☆342Updated 4 years ago
- This is an exploit for CVE-2020-0674 that runs on the x64 version of IE 8, 9, 10, and 11 on Windows 7.☆221Updated 4 years ago
- Programmatically create an administrative user under Windows☆177Updated 7 years ago
- Example DLL to load from Windows NetShell☆175Updated 7 years ago
- 64bit Windows 10 shellcode that injects all processes with Meterpreter reverse shells.☆127Updated last year
- Exploit for CVE-2021-40449 - Win32k Elevation of Privilege Vulnerability (LPE)☆457Updated 2 years ago
- Print Spooler Named Pipe Impersonation for Cobalt Strike☆258Updated 4 years ago
- Weaponizing for privileged file writes bugs with windows problem reporting☆204Updated 2 years ago
- The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.☆461Updated 2 years ago
- This is a PowerShell Empire launcher PoC using PrintDemon and Faxhell.☆197Updated 3 years ago
- writeup of CVE-2020-1362☆230Updated 4 years ago