fortra / CVE-2024-6769
Activation cache poisoning to elevate from medium to high integrity (CVE-2024-6769)
☆51Updated last month
Related projects ⓘ
Alternatives and complementary repositories for CVE-2024-6769
- Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar☆118Updated 3 months ago
- 64-bit, position-independent reverse tcp shell, built in Rust for Windows.☆44Updated last month
- Sleep obfuscation☆82Updated this week
- TypeLib persistence technique☆70Updated 3 weeks ago
- ☆59Updated 5 months ago
- ☆95Updated last year
- Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader☆84Updated 8 months ago
- I have documented all of the AMSI patches that I learned till now☆68Updated last year
- ☆81Updated 2 months ago
- ☆116Updated 2 months ago
- This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".☆75Updated last year
- ☆77Updated 7 months ago
- ☆33Updated 4 months ago
- CVE-2024-30090 - LPE PoC☆82Updated 3 weeks ago
- Simple ETW unhook PoC. Overwrites NtTraceEvent opcode to disable ETW at Nt-function level.☆42Updated 8 months ago
- ☆129Updated 10 months ago
- ApexLdr is a DLL Payload Loader written in C☆104Updated 3 months ago
- Create Anti-Copy DRM Malware☆42Updated 2 months ago
- A C++ PoC implementation for enumerating Windows Fibers directly from memory☆17Updated 6 months ago
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆78Updated last year
- ☆39Updated 4 months ago
- Implementing the ghostly hollowing PE injection technique using tampered syscalls.☆122Updated 5 months ago
- A firebeam plugin that exploits the CVE-2024-26229 vulnerability to perform elevation of privilege from a unprivileged user☆34Updated 2 months ago
- A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls☆102Updated last month
- lsassdump via RtlCreateProcessReflection and NanoDump☆70Updated 3 weeks ago
- Bypass LSA protection using the BYODLL technique☆143Updated last month
- ☆73Updated last year
- Template-based generation of shellcode loaders☆66Updated 6 months ago
- ☆68Updated last year