Identifies LOLDrivers that are not blocked by the active HVCI policy — ideal for BYOVD scenarios.
☆34Feb 1, 2026Updated last month
Alternatives and similar repositories for byovd-watchdog
Users that are interested in byovd-watchdog are comparing it to the libraries listed below
Sorting:
- Regex based secret scanner for sccm deployment points sccmcontentlib$ shares. Find secrets automatically and download entire packages for…☆18Aug 13, 2025Updated 6 months ago
- Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…☆29Jul 25, 2023Updated 2 years ago
- Powershell Script to enumerate AzureAD and output good data☆14Nov 8, 2023Updated 2 years ago
- Just a nice little shellcode loader using unconventional methods to avoid using signatured APIs☆23Jul 11, 2025Updated 7 months ago
- ☆19Sep 17, 2025Updated 5 months ago
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆79Aug 25, 2025Updated 6 months ago
- A cheatsheet of commands used to pass the CARTP (Certified Azure Red Team Professional) exam.☆22May 4, 2023Updated 2 years ago
- Semester project for Operating Systems course at UCU.☆29Jan 15, 2022Updated 4 years ago
- ☆24Feb 18, 2025Updated last year
- 2015.11.12 三个白帽一题的源码☆18Nov 12, 2015Updated 10 years ago
- .NET tool used to enrich RPC telemetry☆101Jan 24, 2026Updated last month
- ☆26Dec 29, 2021Updated 4 years ago
- Remote Thread Detection with a Kernel Driver☆34Jan 14, 2025Updated last year
- Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects☆138Apr 6, 2025Updated 11 months ago
- Cloud subdomains identification tool☆62Apr 15, 2025Updated 10 months ago
- ☆50Jul 9, 2025Updated 8 months ago
- 一个可快速“搬运”cookie的Burp Suite插件☆25Apr 13, 2018Updated 7 years ago
- flash钓鱼 flash水坑攻击最新版源码☆65Feb 10, 2023Updated 3 years ago
- Easily debug processes running in docker containers☆29Jun 22, 2024Updated last year
- Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH☆140Aug 31, 2025Updated 6 months ago
- Sample Rust Hooking Engine☆36Apr 5, 2024Updated last year
- Universal root exploit for the linux kernel☆38Apr 30, 2024Updated last year
- Lightweight x86-64 instruction length disassembler (LDE)☆34Jun 17, 2023Updated 2 years ago
- Process Injection using Thread Name☆306Apr 18, 2025Updated 10 months ago
- ☆33Mar 19, 2025Updated 11 months ago
- A LAPS dumper written using the impacket library.☆32May 22, 2023Updated 2 years ago
- A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.☆87Mar 2, 2025Updated last year
- GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…☆36Nov 24, 2024Updated last year
- Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel☆59Apr 13, 2025Updated 10 months ago
- 💎 Vulnerability assessment and vulnerability intelligence tool searching for vulnerabilities and exploits using keywords across multiple…☆36Nov 12, 2025Updated 3 months ago
- Mythic C2 Agent written in x64 PIC C☆84Jan 29, 2025Updated last year
- ☆50Jun 4, 2025Updated 9 months ago
- An ICMP channel for Beacons, implemented using Cobalt Strike’s External C2 framework.☆116Oct 6, 2025Updated 5 months ago
- Hells Hollow Windows 11 Rootkit technique to Hook the SSDT via Alt Syscalls☆218Aug 31, 2025Updated 6 months ago
- Select any exported function in a dll as the new dll's entry point.☆81Oct 25, 2024Updated last year
- ☆12Feb 4, 2025Updated last year
- Automation of some MAPT activities and interaction with the mobile Android device.☆22Sep 28, 2025Updated 5 months ago
- Offensive security framework combining 70+ tools for network reconnaissance, OSINT, WiFi attacks, credential cracking, exploitation & tra…☆23Jan 3, 2026Updated 2 months ago
- ☆84Nov 21, 2024Updated last year