WPTaskScheduler RPC Persistence & CVE-2024-49039 via Task Scheduler
☆143Jul 21, 2025Updated 10 months ago
Alternatives and similar repositories for WPTaskScheduler_CVE-2024-49039
Users that are interested in WPTaskScheduler_CVE-2024-49039 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆23Jan 15, 2025Updated last year
- POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY☆234Apr 12, 2025Updated last year
- ☆417Dec 8, 2024Updated last year
- DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely☆383Dec 13, 2024Updated last year
- ☆159Dec 13, 2024Updated last year
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- ☆60Nov 18, 2024Updated last year
- A C++ proof of concept demonstrating the exploitation of Windows Protected Process Light (PPL) by leveraging COM-to-.NET redirection and …☆335Mar 6, 2025Updated last year
- A set of programs for analyzing common vulnerabilities in COM☆262Sep 8, 2024Updated last year
- ☆291Jul 31, 2024Updated last year
- Widget Options – The #1 WordPress Widget & Block Control Plugin <= 4.0.7 - Authenticated (Contributor+) Remote Code Execution☆13Dec 2, 2024Updated last year
- 复现《EDR的梦魇:Storm-0978使用新型内核注入技术“Step Bear”》☆164Oct 27, 2024Updated last year
- TypeLib persistence technique☆146Oct 22, 2024Updated last year
- Detect BypassUAC using AMSI☆29Feb 18, 2025Updated last year
- CVE-2024-30090 - LPE PoC☆107Oct 17, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- COM ViewLogger — new malware keylogging technique☆407Jan 6, 2025Updated last year
- ☆42Mar 12, 2025Updated last year
- Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC☆437Sep 29, 2025Updated 8 months ago
- Bypass Credential Guard by patching WDigest.dll using only NTAPI functions☆270Apr 8, 2025Updated last year
- Bypassing UAC with SSPI Datagram Contexts☆469Sep 24, 2023Updated 2 years ago
- SOCKS5 proxy tool that uses Azure Storage services as a means of communication.☆356Mar 21, 2026Updated 2 months ago
- Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry☆474Aug 2, 2024Updated last year
- AV/EDR killer leveraging vulnerable kernel drivers☆482Nov 28, 2023Updated 2 years ago
- A Rust implementation of GodPotato — abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTA…☆364Mar 17, 2026Updated 3 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- AV/EDR killer using BYOVD technique☆45Sep 27, 2024Updated last year
- Proof of concept & details for CVE-2025-21298☆198Jan 20, 2025Updated last year
- [ BOF-LAUNCHER ] -> an API for loading, executing and in-memory masking BOFs on Windows and Linux for use in C/Zig/Go/Rust agents/implan…☆317Jun 10, 2026Updated last week
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆699Jun 11, 2026Updated last week
- ☆125Mar 23, 2025Updated last year
- Reports and POCs for CVE 2024-43570 and CVE-2024-43535☆31Jun 7, 2025Updated last year
- LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113☆519Jan 2, 2025Updated last year
- Windows rootkit designed to work with BYOVD exploits☆222Jan 18, 2025Updated last year
- SharpSilentChrome is a C# project that "silently" installs browser extensions on Google Chrome or MS Edge by updating the browsers' Prefe…☆197Mar 19, 2026Updated 3 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths☆360Aug 11, 2024Updated last year
- Reverse engineering winapi function loadlibrary.☆244Apr 17, 2023Updated 3 years ago
- PfSense Stored XSS lead to Arbitrary Code Execution exploit☆51Jan 12, 2025Updated last year
- Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"☆150Aug 15, 2024Updated last year
- ☆204Jul 29, 2024Updated last year
- Dump cookies and credentials directly from Chrome/Edge process memory☆1,467Apr 9, 2026Updated 2 months ago
- 「💀」Proof of concept on BYOVD attack☆164Dec 7, 2024Updated last year