ommadawn46 / win-x86-shellcoder

Related projects ⓘ

Alternatives and complementary repositories for win-x86-shellcoder

• xct / SeManageVolumeAbuse
  SeManageVolumePrivilege to SYSTEM
  ☆71Updated last year
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆95Updated last year
• xct / SeRestoreAbuse
  SeRestorePrivilege to SYSTEM
  ☆80Updated 3 years ago
• mmnoureldin / UnmanagedPowerShell
  ☆26Updated last year
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆46Updated 3 months ago
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆160Updated 5 months ago
• mrtouch93 / OSED-Notes
  Some notes + exercises that I've done during my study for the Offensive Security Exploit Developer.
  ☆37Updated last year
• rasta-mouse / PPEnum
  Simple BOF to read the protection level of a process
  ☆104Updated last year
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆145Updated 11 months ago
• Wh04m1001 / SysmonEoP
  ☆181Updated last year
• ChoiSG / OneDriveUpdaterSideloading
  Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post
  ☆86Updated 2 years ago
• cinzinga / Evasion-Practice
  A variety of AV evasion techniques written in C# for practice.
  ☆78Updated 3 years ago
• CsEnox / SeManageVolumeExploit
  ☆82Updated last year
• waawaa / AMSI_Rubeus_bypass
  ☆61Updated 2 years ago
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆78Updated 2 years ago
• Wh04m1001 / DiagTrackEoP
  ☆89Updated 2 years ago
• EspressoCake / DLL-Hijack-Search-Order-BOF
  DLL Hijack Search Order Enumeration BOF
  ☆141Updated 3 years ago
• Cipher7 / ApexLdr
  ApexLdr is a DLL Payload Loader written in C
  ☆104Updated 4 months ago
• Crypt0s / DelegationBOF
  ☆138Updated 2 years ago
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆42Updated 2 years ago
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆113Updated 11 months ago
• sliverarmory / armory
  The Official Sliver Armory
  ☆83Updated 3 months ago
• xenoscr / SysWhispers2
  AV/EDR evasion via direct system calls.
  ☆106Updated 11 months ago
• xpn / ntlmquic
  POC tools for exploring SMB over QUIC protocol
  ☆122Updated 2 years ago
• decoder-it / RelabelAbuse
  ☆59Updated 5 months ago
• mlcsec / EDRenum-BOF
  Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.
  ☆108Updated last month
• rootshooter / osep-code-dump-2022
  Code dump from PEN-300/OSEP updated 2022
  ☆40Updated 2 years ago
• OmriBaso / WTSImpersonator
  WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"
  ☆113Updated 4 months ago
• ewby / Mockingjay_BOF
  Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique
  ☆149Updated last year
• buyne / OSEP-1
  ☆28Updated 3 years ago