hackerhouse-opensource / CompMgmtLauncher_DLL_UACBypass

Related projects: ⓘ

• duck-sec / CVE-2023-28252-Compiled-exe
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆51Updated 7 months ago
• D1rkMtr / FileLessRemoteShellcode
  ☆138Updated this week
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆95Updated last year
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆55Updated 5 months ago
• D1rkMtr / RecyclePersist
  ☆96Updated this week
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆147Updated 9 months ago
• PhrozenIO / SharpFtpC2
  A Streamlined FTP-Driven Command and Control Conduit for Interconnecting Remote Systems.
  ☆85Updated 10 months ago
• securityandstuff / DynamicFinder
  ☆65Updated this week
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆36Updated last month
• NUL0x4C / NoRunPI
  Run Your Payload Without Running Your Payload
  ☆174Updated last year
• sfewer-r7 / CVE-2023-27532
  Exploit for CVE-2023-27532 against Veeam Backup & Replication
  ☆102Updated last year
• decoder-it / TokenStealer
  ☆155Updated 10 months ago
• SaadAhla / IP-Hunter
  Hunt for C2 servers and phishing web sites using VirusTotal API , you can modify code to kill the malicious process
  ☆63Updated 4 months ago
• knight0x07 / WinRAR-Code-Execution-Vulnerability-CVE-2023-38831
  Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)
  ☆39Updated last year
• SaadAhla / PSpersist
  Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell pro…
  ☆84Updated last year
• Wh04m1001 / IFaultrepElevatedDataCollectionUAC
  ☆131Updated last year
• dmcxblue / SharpBlackout
  Terminate AV/EDR leveraging BYOVD attack
  ☆77Updated last year
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year
• MaorSabag / SideLoadingDLL
  Do some DLL SideLoading magic
  ☆72Updated last year
• ghostpepper108 / Evasion
  ☆105Updated last year
• D1rkMtr / ExplorerPersist
  ☆117Updated this week
• DamonMohammadbagher / NativePayload_PE1
  NativePayload_PE1/PE2 , Injecting Meterpreter Payload bytes into local Process via Delegation Technique + in-memory with delay Changing R…
  ☆57Updated last year
• Wh04m1001 / CVE-2023-29343
  ☆159Updated last year
• securifybv / BOFRyptor
  ☆113Updated 11 months ago
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆60Updated last year
• tijme / amd-ryzen-master-driver-v17-exploit
  Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).
  ☆131Updated last year
• CodeXTF2 / cobaltstrike-headless
  Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.
  ☆145Updated 2 years ago
• Wh04m1001 / DiagTrackEoP
  ☆87Updated 2 years ago
• amauricio / junkshell
  ☆24Updated last year
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆74Updated 3 months ago