kargisimos / detenvLinks
A small and portable Windows C library for sandbox detection
☆35Updated 2 years ago
Alternatives and similar repositories for detenv
Users that are interested in detenv are comparing it to the libraries listed below
Sorting:
- Duplicate not owned Token from Running Process☆72Updated 2 years ago
- ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.☆49Updated 2 years ago
- a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab☆64Updated 9 months ago
- A repository with my code snippets for research/education purposes.☆51Updated 2 years ago
- Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)☆40Updated 2 years ago
- in-process powershell runner for BRC4☆47Updated last year
- ☆59Updated 11 months ago
- Small toolkit for extracting information and dumping sensitive strings from Windows processes☆115Updated last year
- ☆48Updated 2 years ago
- RegStrike is a .reg payload generator☆57Updated 2 years ago
- Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell pro…☆84Updated 2 years ago
- RCE PoC for Empire C2 framework <5.9.3☆29Updated last year
- Experience the power of a PHP webshell designed to overcome the limitations of blacklisted system/exec functions.☆25Updated last year
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆74Updated 2 years ago
- WptsExtensions.dll for exploiting DLL hijacking of the task scheduler.☆55Updated 4 years ago
- A modification to fortra's CVE-2023-28252 exploit, compiled to exe☆53Updated last year
- malleable profile generator GUI for Havoc☆55Updated 2 years ago
- A lightweight HTTP/HTTPS reverse proxy for efficient, policy-based traffic filtering and redirection.☆46Updated 2 years ago
- CompMgmtLauncher & Sharepoint DLL Search Order hijacking UAC/persist via OneDrive☆108Updated 2 years ago
- ☆28Updated last year
- ☆58Updated last year
- C++ Code to perform a MiniDump of lsass.exe☆36Updated 2 years ago
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆35Updated last year
- Beacon Object Files (BOF) for Cobalt Strike.☆32Updated last year
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆87Updated last year
- A LAPS dumper written using the impacket library.☆32Updated 2 years ago
- Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io☆85Updated 3 months ago
- PoC-Malware-TTPs☆49Updated 2 years ago
- C# havoc implant☆101Updated 2 years ago
- Proof of Concept Exploit for CVE-2024-9465☆30Updated last year