hackerhouse-opensource / CompMgmtLauncher_DLL_UACBypassLinks
CompMgmtLauncher & Sharepoint DLL Search Order hijacking UAC/persist via OneDrive
☆107Updated 2 years ago
Alternatives and similar repositories for CompMgmtLauncher_DLL_UACBypass
Users that are interested in CompMgmtLauncher_DLL_UACBypass are comparing it to the libraries listed below
Sorting:
- a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab☆63Updated 5 months ago
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆111Updated 2 years ago
- A Streamlined FTP-Driven Command and Control Conduit for Interconnecting Remote Systems.☆88Updated last year
- ☆88Updated 2 years ago
- Winsocket for Cobalt Strike.☆98Updated last year
- Identify and exploit leaked handles for local privilege escalation.☆108Updated last year
- Duplicate not owned Token from Running Process☆72Updated last year
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆148Updated last year
- A modification to fortra's CVE-2023-28252 exploit, compiled to exe☆53Updated last year
- CVE-2021-34473 Microsoft Exchange Server Remote Code Execution Vulnerability☆40Updated 2 years ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section☆103Updated last year
- Create Anti-Copy DRM Malware☆57Updated 9 months ago
- An updated version of keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard in…☆104Updated last year
- Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell pro…☆85Updated last year
- Bypass UAC on Windows 10/11 x64 using ms-settings DelegateExecute registry key.☆77Updated 2 years ago
- RDLL for Cobalt Strike beacon to silence sysmon process☆88Updated 2 years ago
- The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …☆44Updated 3 years ago
- Golang reverse proxy with CobaltStrike malleable profile validation.☆109Updated 2 years ago
- Terminate AV/EDR leveraging BYOVD attack☆87Updated 2 months ago
- ☆107Updated 2 years ago
- Improved version of EKKO by @5pider that Encrypts only Image Sections☆119Updated 2 years ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 2 years ago
- C# havoc implant☆99Updated 2 years ago
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆80Updated last year
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆74Updated 2 years ago
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…☆70Updated last year
- Reasonably undetected shellcode stager and executer.☆37Updated 2 weeks ago
- ☆124Updated last year
- A small Aggressor script to help Red Teams identify foreign processes on a host machine☆85Updated 2 years ago
- C++ Staged Shellcode Loader with Evasion capabilities.☆90Updated 7 months ago