eladshamir / BadWindowsService
An insecurely implemented and installed Windows service for emulating elevation of privileges vulnerabilities
☆43Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for BadWindowsService
- A BOF to interact with COM objects associated with the Windows software firewall.☆100Updated 3 years ago
- all credits go to @mgeeky☆58Updated 3 years ago
- Bunch of BOF files☆23Updated 8 months ago
- Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts☆17Updated last year
- Unchain AMSI by patching the provider’s unmonitored memory space☆87Updated last year
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆32Updated 2 years ago
- Click Once + App Domain☆62Updated 11 months ago
- Cobalt Strike BOF for quser.exe implementation using Windows API☆83Updated last year
- ☆51Updated 3 years ago
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆38Updated last year
- ☆27Updated 5 months ago
- GhostLoader - AppDomainManager - Injection - 攻壳机动队☆51Updated 4 years ago
- Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain☆32Updated 11 months ago
- ☆24Updated 2 years ago
- A C implementation of the Sektor7 "A Thief" Windows privesc technique.☆61Updated 2 years ago
- A third-party Gopher Assassin for the Havoc Framework.☆44Updated 10 months ago
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆77Updated last year
- Beacon Object Files (not Buffer Overflows)☆51Updated last year
- Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used☆92Updated 3 years ago
- Dump Citrix Secure Access auth cookie from the process memory☆72Updated 2 years ago
- WhoAmI by asking the LDAP service on a domain controller.