ommadawn46 / win-x86-shellcoder

Related projects: ⓘ

• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆36Updated last month
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆147Updated 9 months ago
• Cipher7 / ApexLdr
  ApexLdr is a DLL Payload Loader written in C
  ☆98Updated 2 months ago
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆95Updated last year
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆158Updated 3 months ago
• x0rb3l / CVE-2023-36802-MSKSSRV-LPE
  PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy
  ☆35Updated 10 months ago
• Wh04m1001 / DiagTrackEoP
  ☆87Updated 2 years ago
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆40Updated 2 years ago
• mmnoureldin / UnmanagedPowerShell
  ☆24Updated last year
• waawaa / AMSI_Rubeus_bypass
  ☆61Updated 2 years ago
• ewby / Mockingjay_BOF
  Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique
  ☆147Updated 10 months ago
• decoder-it / RelabelAbuse
  ☆58Updated 3 months ago
• OtterHacker / SetProcessInjection
  ☆142Updated 11 months ago
• reveng007 / AMSI-patches-learned-till-now
  I have documented all of the AMSI patches that I learned till now
  ☆66Updated last year
• 0xVIC / myAPPLockerBypassSummary
  Simple APPLocker bypass summary
  ☆39Updated 5 years ago
• Crypt0s / DelegationBOF
  ☆135Updated 2 years ago
• OmriBaso / WTSImpersonator
  WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"
  ☆114Updated 2 months ago
• xpn / ntlmquic
  POC tools for exploring SMB over QUIC protocol
  ☆119Updated 2 years ago
• mrtouch93 / OSED-Notes
  Some notes + exercises that I've done during my study for the Offensive Security Exploit Developer.
  ☆31Updated last year
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆74Updated 3 months ago
• Tylous / Mangle
  Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
  ☆59Updated last year
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆74Updated 2 years ago
• CICADA8-Research / COMThanasia
  A set of programs for analyzing common vulnerabilities in COM
  ☆94Updated last week
• sliverarmory / armory
  The Official Sliver Armory
  ☆80Updated last month
• xct / SeManageVolumeAbuse
  SeManageVolumePrivilege to SYSTEM
  ☆61Updated 9 months ago
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆74Updated last year
• Tw1sm / SQL-BOF
  Library of BOFs to interact with SQL servers
  ☆143Updated 3 months ago
• rasta-mouse / PPEnum
  Simple BOF to read the protection level of a process
  ☆101Updated last year
• Wh04m1001 / SysmonEoP
  ☆179Updated last year
• 0xHossam / HuffLoader
  Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader
  ☆75Updated 6 months ago