hackerhouse-opensource / Stinger
CIA UAC bypass implementation of Stinger that obtains the token from an auto-elevated process, modifies it, and reuses it to execute as Administrator.
☆289Updated last year
Alternatives and similar repositories for Stinger:
Users that are interested in Stinger are comparing it to the libraries listed below
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.☆534Updated 2 months ago
- Amsi Bypass payload that works on Windwos 11☆376Updated last year
- PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.☆397Updated 9 months ago
- Kill AV/EDR leveraging BYOVD attack☆344Updated last year
- AV bypass while you sip your Chai!☆218Updated 10 months ago
- ☆274Updated last year
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆285Updated 10 months ago
- Extracting NetNTLM without touching lsass.exe☆235Updated last year
- Use hardware breakpoint to dynamically change SSN in run-time☆246Updated 11 months ago
- Collection of UAC Bypass Techniques Weaponized as BOFs☆486Updated last year
- Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!☆437Updated last month
- Reduce Entropy And Obfuscate Youre Payload With Serialized Linked Lists☆423Updated last year
- Nameless C2 - A C2 with all its components written in Rust☆262Updated 6 months ago
- ☆170Updated 4 months ago
- DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely☆349Updated 3 months ago
- BOF for Kerberos abuse (an implementation of some important features of the Rubeus).☆445Updated last month
- ☆255Updated last year
- ☆304Updated 3 months ago
- "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS☆265Updated this week
- Evasive shellcode loader☆350Updated 5 months ago
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆151Updated 10 months ago
- A PowerShell console in C/C++ with all the security features disabled☆216Updated last week
- A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfve…☆511Updated 9 months ago
- Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.☆305Updated 11 months ago
- Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC☆342Updated 2 months ago
- Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry☆396Updated 7 months ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆290Updated 4 months ago
- Bypass Credential Guard by patching WDigest.dll using only NTAPI functions☆233Updated 3 months ago
- Utilizing TLS callbacks to execute a payload without spawning any threads in a remote process☆256Updated last year
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆568Updated 9 months ago