Alternatives and similar repositories for CVE-2023-36003-POC:

Users that are interested in CVE-2023-36003-POC are comparing it to the libraries listed below

• Wh04m1001 / CVE-2024-20656
  ☆138Updated last year
• MzHmO / DebugAmsi
  DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.
  ☆96Updated last year
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆46Updated 11 months ago
• duck-sec / CVE-2023-28252-Compiled-exe
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆53Updated last year
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆55Updated 7 months ago
• tehstoni / LexiCrypt
  Shellcode encryptor using a substitution cipher with a randomly generated key.
  ☆119Updated last month
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆150Updated 9 months ago
• voidvxvt / HellBunny
  Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks
  ☆82Updated 2 months ago
• lem0nSec / KBlast
  Windows Kernel Offensive Toolset
  ☆119Updated 5 months ago
• NUL0x4C / FetchPayloadFromDummyFile
  Construct the payload at runtime using an array of offsets
  ☆61Updated 8 months ago
• NtDallas / KrakenMask
  Sleep obfuscation
  ☆208Updated 2 months ago
• nbaertsch / AutoAppDomainHijack
  Automated .NET AppDomain hijack payload generation
  ☆119Updated 2 weeks ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆52Updated 6 months ago
• passtheticket / CVE-2024-38200
  CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability
  ☆137Updated last month
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆141Updated 6 months ago
• ZERODETECTION / MSC_Dropper
  ☆139Updated 6 months ago
• rasta-mouse / process-inject-kit
  Port of Cobalt Strike's Process Inject Kit
  ☆165Updated 2 months ago
• dobin / SuperMega
  Stealthily inject shellcode into an executable
  ☆148Updated 3 weeks ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆109Updated last year
• rad9800 / FileRenameJunctionsEDRDisable
  ☆143Updated 2 months ago
• Maldev-Academy / GhostlyHollowingViaTamperedSyscalls
  Implementing the ghostly hollowing PE injection technique using tampered syscalls.
  ☆131Updated 8 months ago
• itm4n / PPLrevenant
  Bypass LSA protection using the BYODLL technique
  ☆154Updated 5 months ago
• 0xTriboulet / Red_Team_Code_Snippets
  random code snippets, useful for getting started
  ☆116Updated 3 months ago
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆193Updated 8 months ago
• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆85Updated 8 months ago
• SaadAhla / D1rkInject
  Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, an…
  ☆176Updated last year
• je5442804 / WPTaskScheduler_CVE-2024-49039
  WPTaskScheduler RPC Persistence & CVE-2024-49039 via Task Scheduler
  ☆119Updated 3 months ago
• Evi1Grey5 / Recursive-Loader
  Recursive Loader
  ☆101Updated 4 months ago
• florylsk / SignatureGate
  Weaponized HellsGate/SigFlip
  ☆198Updated last year