exploitblizzard / Windows-Privilege-Escalation-CVE-2021-1732Links
Read my blog for more info -
☆31Updated 4 years ago
Alternatives and similar repositories for Windows-Privilege-Escalation-CVE-2021-1732
Users that are interested in Windows-Privilege-Escalation-CVE-2021-1732 are comparing it to the libraries listed below
Sorting:
- Process Hollowing demonstration & explanation☆35Updated 4 years ago
- NT AUTHORITY\SYSTEM☆38Updated 5 years ago
- 💻 Windows 10 Kernel-mode rootkit☆31Updated 2 years ago
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆71Updated 4 years ago
- Hiding your process in ProcessHacker,Task Manager,etc by patching NtQuerySystemInformation☆87Updated 4 years ago
- vulnerability in zam64.sys, zam32.sys allowing ring 0 code execution. CVE-2021-31727 and CVE-2021-31728 public reference.☆91Updated 4 years ago
- stack based buffer overflow in MsIo64.sys, Proof of Concept Local Privilege Escalation to nt authority/system☆11Updated 4 years ago
- Bypass UAC by abusing shell protocol handlers☆14Updated 4 years ago
- Bypass UAC by abusing the Internet Explorer Add-on installer☆54Updated 4 years ago
- Read Memory without ReadProcessMemory for Current Process☆76Updated 3 years ago
- Shellcodev is a tool designed to help and automate the process of shellcode creation.☆110Updated last year
- A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.☆40Updated 4 years ago
- A Bumblebee-inspired Crypter☆79Updated 2 years ago
- ☆63Updated 2 years ago
- Bypassing windows uac, however its an old approach/method but its still unpatched ¯\_(ツ)_/¯☆44Updated 3 years ago
- Recreating and reviewing the Windows persistence methods☆39Updated 3 years ago
- Injects position-dependent code into a code cave in an executable file, and applies relocations.☆23Updated 2 years ago
- Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler☆29Updated 4 years ago
- Listing UDP connections with remote address without sniffing.☆29Updated last year
- A kernel mode Windows rootkit in development.☆49Updated 3 years ago
- Windows GPU rootkit PoC by Team Jellyfish☆36Updated 10 years ago
- Reduce Dynamic Analysis Detection Rates With Built-In Unhooker, Anti Analysis Techniques, And String Obfuscator Modules.☆19Updated 2 years ago
- A modified RunPE (process hollowing) technique avoiding the usage of SetThreadContext by appending a TLS section which calls the original…☆97Updated 5 years ago
- An attempt at reversing WindowsDefender☆20Updated 10 months ago
- Bypass UAC at any level by abusing the Task Scheduler and environment variables☆31Updated 4 years ago
- Weaponizing Gigabyte driver for priv escalation and bypass PPL☆68Updated 6 years ago
- Scan for potentially vulnerable drivers☆89Updated 3 years ago
- POC of PPID spoofing using NtCreateUserProcess with syscalls to create a suspended process and performing process injection by overwritti…☆41Updated 3 years ago
- UAC bypass abusing WinSxS in "wusa.exe". Referred from and similar to: https://github.com/L3cr0f/DccwBypassUAC , Kudos to L3cr0f and Fuz…☆34Updated 4 years ago
- ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption☆88Updated 2 years ago