ionescu007 / PrintDemon
PrintDemon is a PoC for a series of issues in the Windows Print Spooler service, as well as potetial misuses of the functionality.
☆199Updated 4 years ago
Alternatives and similar repositories for PrintDemon:
Users that are interested in PrintDemon are comparing it to the libraries listed below
- Code from this article: https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/☆171Updated 4 years ago
- CVE-2020-0796 Local Privilege Escalation POC☆241Updated 4 years ago
- PoC code for CVE-2019-0841 Privilege Escalation vulnerability☆242Updated 5 years ago
- Bypassing NTFS permissions to read any files as unprivileged user.☆187Updated 4 years ago
- ☆350Updated 2 years ago
- A denial-of-service proof-of-concept for CVE-2020-1350☆238Updated 4 years ago
- Exploit for CVE-2020-3952 in vCenter 6.7☆270Updated 4 years ago
- Windows - Weaponizing privileged file writes with the Update Session Orchestrator service☆382Updated 4 years ago
- This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System f…☆269Updated 4 years ago
- Windows 10 LPE (UAC Bypass) in Windows Store (WSReset.exe)☆264Updated 5 years ago
- a tool to make it easy and fast to test various forms of injection☆172Updated 5 years ago
- A Bind Shell Using the Fax Service and a DLL Hijack☆325Updated 4 years ago
- ☆261Updated last year
- Poc for CVE-2019-1253☆154Updated 3 years ago
- PoC of CVE-2020-16947 (Microsoft Outlook RCE vulnerablility)☆125Updated 4 years ago
- PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)☆322Updated 5 years ago
- A meterpreter extension for applying hooks to avoid windows defender memory scans☆241Updated 4 years ago
- BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET☆144Updated 4 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆255Updated 6 years ago
- Lateral Movement technique using DCOM and HTA☆230Updated 2 years ago
- ntlm relay attack to Exchange Web Services☆329Updated 7 years ago
- ☆147Updated 4 years ago
- ☆278Updated 4 years ago
- Create a minidump of the LSASS process from memory☆255Updated 2 years ago
- Use CVE-2020-0668 to perform an arbitrary privileged file move operation.☆214Updated 4 years ago
- Ps-Tools, an advanced process monitoring toolkit for offensive operations☆335Updated 4 years ago
- Public work for CVE-2019-0708☆290Updated 5 years ago
- PoC for Privilege Escalation in Windows 10 Diagnostics Hub Standard Collector Service☆108Updated 6 years ago
- Evading WinDefender ATP credential-theft☆254Updated 5 years ago
- AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.☆384Updated 5 years ago