hackerhouse-opensource / ArtilleryLinks
CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administrator.
☆183Updated last year
Alternatives and similar repositories for Artillery
Users that are interested in Artillery are comparing it to the libraries listed below
Sorting:
- This project is an implant framework designed for long term persistent access to Windows machines.☆110Updated 2 years ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆148Updated last year
- SHELLSILO is a cutting-edge tool that translates C syntax into syscall assembly and its corresponding shellcode. It streamlines the proce…☆152Updated 3 months ago
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆139Updated last year
- 「💀」Proof of concept on BYOVD attack☆164Updated 11 months ago
- ☆192Updated last year
- Command and Control (C2) framework☆132Updated 6 months ago
- ☆120Updated last year
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆154Updated last year
- Documents Exfiltration project for fun and educational purposes☆144Updated 2 years ago
- Collection of random RedTeam scripts.☆207Updated last year
- C# AV/EDR Killer using less-known driver (BYOVD)☆181Updated 2 years ago
- Basic interactive Windows kernel offensive toolkit written in C☆133Updated 2 months ago
- PoC for dumping and decrypting cookies in the latest version of Microsoft Teams☆131Updated 2 years ago
- Local & remote Windows DLL Proxying☆169Updated last year
- Evasive Golang Loader☆138Updated last year
- ☆163Updated 2 years ago
- ☆107Updated 2 years ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆209Updated last year
- Windows Persistence IT-Security☆106Updated 8 months ago
- ☆132Updated 2 years ago
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆50Updated last year
- A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.☆318Updated 2 years ago
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆159Updated 3 months ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆101Updated 7 months ago
- Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.☆174Updated 8 months ago
- Extracting NetNTLM without touching lsass.exe☆239Updated last year
- A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.☆198Updated last year
- ☆159Updated 11 months ago
- Bypass Credential Guard by patching WDigest.dll using only NTAPI functions☆262Updated 7 months ago