exploitblizzard / WindowsMDM-LPE-0DayLinks
CVE-2021-24084 Windows Local Privilege Escalation Left officially unpatched since 2020. Hence, its still a zero day
☆51Updated 3 years ago
Alternatives and similar repositories for WindowsMDM-LPE-0Day
Users that are interested in WindowsMDM-LPE-0Day are comparing it to the libraries listed below
Sorting:
- Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.☆111Updated 3 years ago
- Cobalt Strike BOF Files with Nim!☆86Updated 3 years ago
- Bypass Detection By Randomising ROR13 API Hashes☆142Updated 3 years ago
- ☆134Updated 2 years ago
- Windows NTLM Authentication Backdoor☆241Updated 7 months ago
- Windows shellcode encoding and encrypting tool☆20Updated 3 years ago
- Exploits undocumented elevated COM interface ICMLuaUtil via process spoofing to edit registry then calls ColorDataProxy to trigger UAC b…☆139Updated 2 years ago
- Using syscall to load shellcode, Evasion techniques☆27Updated 4 years ago
- Weaponizing for privileged file writes bugs with PrintNotify Service☆134Updated 3 years ago
- Convert shellcode generated using pe_2_shellcode to cdb format.☆99Updated 3 years ago
- Exploring in-memory execution of .NET☆139Updated 3 years ago
- Pseudorandom AES-256 encryption designed to protect shellcode and arbitrary strings. C# and C/C++ compatible.☆102Updated 3 years ago
- Use CMSTP.exe to bypass UAC.☆47Updated 3 years ago
- Reflective DLL Injection with obfuscated (XOR) shellcode☆73Updated 4 years ago
- Escalate from a low-integrity Administrator account to NT AUTHORITY\SYSTEM without an LPE exploit by combining a COM UAC bypass and Token…☆158Updated 3 years ago
- A spin-off research project. Cobalt Strike x Notion collab 2022☆53Updated 3 years ago
- Encrypting shellcode to Bypass AV☆71Updated 6 years ago
- This is a C# implementation of making a process/executable run as NT AUTHORITY/SYSTEM. This is achieved through parent ID spoofing of alm…☆109Updated 2 years ago
- C# implementation of the research by @jonaslyk and the drafted PoC from @LloydLabs☆150Updated 3 years ago
- transmit cs beacon (shellcode) over self-made dns to avoid anti-kill and AV☆49Updated 4 years ago
- lpe poc for cve-2022-21882☆49Updated 3 years ago
- A small (Edited) POC to make defender useless by removing its token privileges and lowering the token integrity☆32Updated 3 years ago
- Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.☆16Updated 3 years ago
- MappingInjection via csharp☆40Updated 3 years ago
- Shellcode injection POC using syscalls.☆116Updated 5 years ago
- WIP shellcode loader in nim with EDR evasion techniques☆220Updated 3 years ago
- UUID based Shellcode loader for your favorite C2☆86Updated 3 years ago
- C# code to Sandbox Defender (and most probably other AV/EDRs).☆166Updated 3 years ago
- Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.☆62Updated 3 years ago
- A Flask-based HTTP(S) command and control (C2) framework with a web interface. Custom Windows EXE/DLL implants written in C++. For educat…☆92Updated last year