klezVirus / AIDA64DRIVER-EoPLinks
AIDA64DRIVER Elevation of Privilege Vulnerability
☆15Updated last year
Alternatives and similar repositories for AIDA64DRIVER-EoP
Users that are interested in AIDA64DRIVER-EoP are comparing it to the libraries listed below
Sorting:
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated 2 years ago
- Your NTDLL vaccine from modern direct syscall methods.☆36Updated 3 years ago
- Remap ntdll.dll using only NTAPI functions with a suspended process☆26Updated 6 months ago
- Callstack spoofing using a VEH because VEH all the things.☆23Updated 7 months ago
- A work in progress BOF/COFF loader in Rust☆50Updated 2 years ago
- A bunch of shenanigans using functions, VEH and more☆36Updated 4 months ago
- An In-memory Embedding of CPython☆30Updated 4 years ago
- process hollowing variant using NtCreateSection + NtMapViewOfSection + ResumeThread☆31Updated 3 years ago
- A simple Linux in-memory .so loader☆32Updated 2 years ago
- Sleep Obfuscation☆45Updated 3 years ago
- Small tool to play with IOCs caused by Imageload events☆42Updated 2 years ago
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆39Updated 2 years ago
- Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits☆31Updated 3 years ago
- Hooked create process injection for meterpreter☆23Updated 4 years ago
- idk man this was the default github name☆35Updated 2 years ago
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆61Updated last year
- ☆56Updated 2 years ago
- Set the process mitigation policy for loading only Microsoft Modules , and block any userland 3rd party modules☆42Updated 2 years ago
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆61Updated last year
- A C# implementation that disables Windows Firewall bypassing UAC☆16Updated last year
- ☆33Updated last year
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆23Updated 2 years ago
- Self Delete DLL☆23Updated last year
- ☆30Updated 9 months ago
- A repository filled with ideas to break/detect direct syscall techniques☆27Updated 3 years ago
- various methods of making API calls☆19Updated 8 months ago
- Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…☆33Updated 2 years ago
- Exploiting the KsecDD Windows driver through Server Silos☆74Updated 11 months ago
- Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts☆23Updated 2 years ago
- early cascade injection PoC based on Outflanks blog post, in rust☆60Updated 11 months ago