leftp / FirewallMonikerLinks
A C# implementation that disables Windows Firewall bypassing UAC
ā15Updated 7 months ago
Alternatives and similar repositories for FirewallMoniker
Users that are interested in FirewallMoniker are comparing it to the libraries listed below
Sorting:
- š”ļø A multi-user malleable C2 framework targeting Windows. Written in C++ and Pythonā45Updated last year
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial ā¦ā49Updated 4 months ago
- yet another sleep encryption thing. also used the default github repo name for this one.ā69Updated 2 years ago
- Creation and removal of Defender path exclusions and exceptions in C#.ā31Updated last year
- A work in progress BOF/COFF loader in Rustā50Updated 2 years ago
- ā36Updated 2 years ago
- a demo module for the kaine agent to execute and inject assembly modulesā38Updated 9 months ago
- This project is an EDRSandblast fork, adding some features and custom pieces of code.ā23Updated last year
- Your NTDLL vaccine from modern direct syscall methods.ā35Updated 3 years ago
- ā27Updated 4 months ago
- "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system cā¦ā24Updated 8 months ago
- A powerful Windows UI monitoring and DNS exfiltration tool written in Rust, combining advanced UI event capture capabilities with secure ā¦ā16Updated 3 months ago
- Callstack spoofing using a VEH because VEH all the things.ā21Updated 2 months ago
- Windows C++ Implant for Exploration C2ā31Updated last week
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004ā32Updated last year
- Section-based payload obfuscation technique for x64ā59Updated 9 months ago
- ā31Updated 5 months ago
- Simple PoC to locate hooked functions by EDR in ntdll.dllā36Updated last year
- ā54Updated 2 years ago
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loaderā48Updated last year
- An Aggressor Script that utilizes NtCreateUserProcess to run binariesā28Updated 4 months ago
- Linker for Beacon Object Filesā70Updated this week
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.ā61Updated last year
- Load and execute a common object file format (COFF) in the current processā29Updated last year
- converts sRDI compatible dlls to shellcodeā29Updated 4 months ago
- ā39Updated 3 months ago
- ā23Updated 3 months ago
- Sleep Obfuscationā45Updated 2 years ago
- Small tool to play with IOCs caused by Imageload eventsā42Updated 2 years ago
- Simple ETW unhook PoC. Overwrites NtTraceEvent opcode to disable ETW at Nt-function level.ā47Updated last year