nu11secur1ty / Windows10Exploits
Microsoft » Windows 10 : Security Vulnerabilities
☆892Updated last year
Related projects: ⓘ
- A list of useful Powershell scripts with 100% AV bypass (At the time of publication).☆998Updated 2 years ago
- evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)☆1,393Updated 8 months ago
- The swiss army knife of LSASS dumping☆1,738Updated 2 weeks ago
- Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019☆1,564Updated 2 weeks ago
- c++ fully undetected shellcode launcher ;)☆962Updated 3 years ago
- EXOCET - AV-evading, undetectable, payload delivery tool☆823Updated 2 years ago
- Exploit for CVE-2022-21999 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE)☆758Updated 2 years ago
- Template-Driven AV/EDR Evasion Framework☆1,575Updated 10 months ago
- Collection of PoC and offensive techniques used by the BlackArrow Red Team☆1,051Updated 2 months ago
- Exploit allowing you to read registry hives as non-admin on Windows 10 and 11☆706Updated 3 years ago
- Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.☆825Updated 3 years ago
- C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527☆1,830Updated 3 years ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆973Updated 2 years ago
- CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.☆1,327Updated 2 years ago
- A tool to kill antimalware protected processes☆1,370Updated 3 years ago
- Some usefull Scripts and Executables for Pentest & Forensics☆1,060Updated last month
- ScareCrow - Payload creation framework designed around EDR bypass.☆2,711Updated last year
- Some notes and examples for cobalt strike's functionality☆969Updated 2 years ago
- KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…☆1,513Updated 2 years ago
- Automation for internal Windows Penetrationtest / AD-Security☆3,283Updated 7 months ago
- Extract credentials from lsass remotely☆2,022Updated 2 months ago
- PoC for Zerologon - all research credits go to Tom Tervoort of Secura☆1,173Updated 3 years ago
- Windows Privilege Escalation from User to Domain Admin.☆1,318Updated last year
- CVE-2021-40444 - Fully Weaponized Microsoft Office Word RCE Exploit☆794Updated 11 months ago
- Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing…☆1,500Updated last year
- A post exploitation framework designed to operate covertly on heavily monitored environments☆2,024Updated 2 years ago
- POC to replicate the full 'Follina' Office RCE vulnerability for testing purposes☆1,132Updated last year
- Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.☆1,396Updated 2 years ago
- Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)☆1,001Updated 3 years ago
- The Hunt for Malicious Strings☆1,048Updated 2 years ago