fortra / CVE-2023-28252

Related projects: ⓘ

• Wh04m1001 / CVE-2023-29343
  ☆159Updated last year
• binderlabs / DirCreate2System
  Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting
  ☆355Updated last year
• Wh04m1001 / CVE-2023-36874
  ☆233Updated last year
• mansk1es / CVE-2024-21111
  Oracle VirtualBox Elevation of Privilege (Local Privilege Escalation) Vulnerability
  ☆211Updated 4 months ago
• RtlDallas / Jomungand
  ☆238Updated this week
• VirtualAlllocEx / AV-EPP-EDR-Windows-API-Hooking-List
  ☆309Updated this week
• Nero22k / cve-2023-29360
  Exploit for CVE-2023-29360 targeting MSKSSRV.SYS driver
  ☆136Updated 11 months ago
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆259Updated last year
• senzee1984 / MutationGate
  Use hardware breakpoint to dynamically change SSN in run-time
  ☆227Updated 5 months ago
• Offensive-Panda / RWX_MEMEORY_HUNT_AND_INJECTION_DV
  Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.
  ☆227Updated 3 months ago
• Nassim-Asrir / CVE-2023-36424
  Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation
  ☆121Updated 5 months ago
• senzee1984 / InflativeLoading
  Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.
  ☆259Updated 5 months ago
• 0xEr3bus / PoolPartyBof
  A beacon object file implementation of PoolParty Process Injection Technique.
  ☆313Updated 8 months ago
• Bw3ll / ShellWasp
  ShellWasp is a tool to help build shellcode that utilizes Windows syscalls, while overcoming the portability problem associated with Wind…
  ☆156Updated last year
• Wh04m1001 / CVE-2024-20656
  ☆125Updated 8 months ago
• deepinstinct / ContainYourself
  A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
  ☆301Updated last year
• SaadAhla / UnhookingPatch
  Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime
  ☆296Updated last year
• Maldev-Academy / Christmas
  ☆242Updated 7 months ago
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆316Updated last month
• Y3A / CVE-2023-28229
  ☆128Updated 8 months ago
• florylsk / SignatureGate
  Weaponized HellsGate/SigFlip
  ☆188Updated last year
• Bw3ll / ROP_ROCKET
  ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…
  ☆106Updated 2 weeks ago
• xalicex / Killers
  Exploitation of process killer drivers
  ☆182Updated 11 months ago
• rasta-mouse / OST-C2-Spec
  Open Source C&C Specification
  ☆215Updated last month
• Cobalt-Strike / CallStackMasker
  A PoC implementation for dynamically masking call stacks with timers.
  ☆244Updated last year
• chompie1337 / Windows_MSKSSRV_LPE_CVE-2023-36802
  LPE exploit for CVE-2023-36802
  ☆156Updated 11 months ago
• FuzzySecurity / BHUSA-2023
  ☆102Updated 2 months ago
• pard0p / CallstackSpoofingPOC
  C++ self-Injecting dropper based on various EDR evasion techniques.
  ☆320Updated 7 months ago
• S3cur3Th1sSh1t / Caro-Kann
  Encrypted shellcode Injection to avoid Kernel triggered memory scans
  ☆332Updated last year
• wh0amitz / BypassCredGuard
  Credential Guard Bypass Via Patching Wdigest Memory
  ☆304Updated last year