pwnfuzz / byovd-watchdogLinks
Identifies LOLDrivers that are not blocked by the active HVCI policy — ideal for BYOVD scenarios.
☆29Updated last month
Alternatives and similar repositories for byovd-watchdog
Users that are interested in byovd-watchdog are comparing it to the libraries listed below
Sorting:
- Folder Or File Delete to Get System Shell on Current Session Desktop☆46Updated 9 months ago
- I have documented all of the AMSI patches that I learned till now☆74Updated 7 months ago
- ☆56Updated last year
- Self-mutating macOS implant☆80Updated last week
- ☆87Updated 2 years ago
- ☆33Updated 7 months ago
- Select any exported function in a dll as the new dll's entry point.☆81Updated last year
- ☆80Updated last year
- ☆37Updated 10 months ago
- ☆100Updated 2 years ago
- Toolset to manipulate RPC clients by finding delayed services and masquerading as them☆97Updated 2 months ago
- ☆81Updated last year
- A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue☆105Updated last year
- Utilizing hardware breakpoints to evade monitoring by Endpoint Detection and Response platforms☆130Updated 2 years ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆101Updated 2 years ago
- Beacon Debugger☆55Updated 11 months ago
- ☆67Updated 2 years ago
- A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries.☆110Updated last year
- A nice process dumping tool☆82Updated 3 years ago
- This is my own implementation of the Perun's Fart technique by Sektor7☆72Updated 3 years ago
- ☆37Updated 2 years ago
- Plantronics Desktop Hub LPE☆37Updated last year
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆85Updated 2 years ago
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.☆63Updated 2 years ago
- Sliver agent rewritten in C++☆48Updated last year
- A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.☆80Updated 6 months ago
- This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".☆87Updated 2 years ago
- A tool that supports finding and abusing whitelisted programs to allow arbitrary file writing into the executable folder of Antivirus sof…☆43Updated last week
- ☆82Updated last year
- Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH☆128Updated last month