ras-it/Win11-OneDrive-DLL-injection-vulnerability external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ras-it/Win11-OneDrive-DLL-injection-vulnerability

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ras-it/Win11-OneDrive-DLL-injection-vulnerability)

Close

ras-it / Win11-OneDrive-DLL-injection-vulnerabilityView on GitHubMore

• External links
• Readme badge

OneDrive, operating on Microsoft Windows 11 Pro is vulnerable to DLL hijacking.

☆21Nov 9, 2023Updated 2 years ago

Alternatives and similar repositories for Win11-OneDrive-DLL-injection-vulnerability

Users that are interested in Win11-OneDrive-DLL-injection-vulnerability are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• 0xJs / AzurePowerCommands

  View on GitHub
  Extra cmdlets to help with quering security related information from Azure
  ☆14Sep 16, 2024Updated last year
• NoahKirchner / jopcall

  View on GitHub
  Dynamic Indirect Syscalls via JOP/ROP in Pure no_std, no_alloc, no dependency Rust
  ☆43Aug 6, 2025Updated 7 months ago
• JoasASantos / Probabilistic-Call-Stack-PoC

  View on GitHub
  A proof-of-concept to demonstrate randomized execution paths and their impact on call stack signatures — ideal for EDR testing, behavior-…
  ☆24Jan 17, 2026Updated 2 months ago
• Teach2Breach / dll2shell

  View on GitHub
  converts sRDI compatible dlls to shellcode
  ☆35Jan 20, 2025Updated last year
• CodeXTF2 / PyHmmm

  View on GitHub
  Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …
  ☆86Nov 8, 2023Updated 2 years ago
• a7t0fwa7 / DllDragon

  View on GitHub
  A simple to use single-include Windows API resolver
  ☆23Jul 9, 2024Updated last year
• NotokDay / NTProcessInjector

  View on GitHub
  Process injection via native Windows APIs (NTAPIs)
  ☆15Jan 16, 2024Updated 2 years ago
• 0xTriboulet / rssh-rs

  View on GitHub
  ☆55May 31, 2025Updated 9 months ago
• latortuga71 / SharpChisel-NG

  View on GitHub
  ☆39Sep 25, 2023Updated 2 years ago
• tijme / nimplant-beacon-position-independent-c-code

  View on GitHub
  A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.
  ☆67Feb 11, 2025Updated last year
• Offensive-Panda / DV_NEW

  View on GitHub
  This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
  ☆50May 8, 2024Updated last year
• ProcessusT / PsNotifRoutineUnloader

  View on GitHub
  This script is used to unload PsSetCreateProcessNotifyRoutineEx, PsSetCreateProcessNotifyRoutine, PsSetLoadImageNotifyRoutine and PsSetCr…
  ☆63Feb 11, 2024Updated 2 years ago
• Yair-Men / Passenger

  View on GitHub
  ProcExp Driver (Ab)use
  ☆22Dec 28, 2022Updated 3 years ago
• ADPunisher / OwnershipStealer

  View on GitHub
  ☆27May 1, 2023Updated 2 years ago
• h4wkst3r / SharPersist

  View on GitHub
  Windows Persistence Toolkit in C#
  ☆36Sep 23, 2022Updated 3 years ago
• mhaskar / DNSKeyGen

  View on GitHub
  A tool to exchange decryption keys for command and control (C2) beacons and implants through DNS records.
  ☆40Jan 7, 2023Updated 3 years ago
• jaeles-project / ui

  View on GitHub
  React UI
  ☆11Jan 4, 2023Updated 3 years ago
• DXC-StrikeForce / Nemesis-Ansible

  View on GitHub
  Automatically deploy Nemesis
  ☆21Jun 14, 2024Updated last year
• ly4k / Impacket

  View on GitHub
  Modified version of Impacket to use dynamic NTLMv2 Challenge/Response
  ☆20Dec 26, 2022Updated 3 years ago
• badboycxcc / Brute-Ratel-C4

  View on GitHub
  ☆36Feb 1, 2026Updated last month
• kopp0ut / godropit

  View on GitHub
  Purple Team Dropper generator using open source templates.
  ☆17May 23, 2024Updated last year
• UncleJ4ck / MalSys

  View on GitHub
  Malsys is a project designed to validate and analyze files for potential malware signatures.
  ☆21Nov 5, 2023Updated 2 years ago
• XiaoliChan / PetitPotam-V2

  View on GitHub
  More EFS coerced authentication method with PetitPotam.py
  ☆28Mar 21, 2023Updated 3 years ago
• eversinc33 / SharpStartWebclient

  View on GitHub
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆78Feb 8, 2023Updated 3 years ago
• Helixo32 / DetectHooks

  View on GitHub
  Detect userland hooks placed by AV/EDR
  ☆28Sep 4, 2023Updated 2 years ago
• lucsemassa / ad_share_enum

  View on GitHub
  Active Directory share enumeration tool
  ☆12Apr 28, 2025Updated 10 months ago
• 0xTriboulet / T-70

  View on GitHub
  A proof-of-concept shellcode loader that leverages AI/ML face recognition models to verify the identity of a user on a target system
  ☆43Oct 30, 2024Updated last year
• whokilleddb / SOAPHound

  View on GitHub
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆32May 30, 2024Updated last year
• deepinstinct / VSTO-POC

  View on GitHub
  A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously
  ☆32Feb 3, 2023Updated 3 years ago
• Helixo32 / SimpleEDR

  View on GitHub
  Simple EDR that injects a DLL into a process to place a hook on specific Windows API
  ☆97Aug 27, 2023Updated 2 years ago
• mrblacyk / hyder

  View on GitHub
  Multipurpose tool, currently aimed for HackTheBox Battlegrounds
  ☆20Nov 18, 2020Updated 5 years ago
• HackerDom / ructf-2022

  View on GitHub
  RuCTF 2022. Developed with ♥ by Hackerdom team
  ☆11May 22, 2022Updated 3 years ago
• smokeme / asar-backdoor

  View on GitHub
  ☆33Mar 19, 2025Updated last year
• patrickt2017 / VEHNetLoader

  View on GitHub
  Another version of .NET loader provides capabilities of bypassing ETW and AMSI, utilizing VEH for syscalls and loading .NET assemblies
  ☆50Jul 6, 2025Updated 8 months ago
• JCSteiner / Emperor-Public

  View on GitHub
  Payload Generation Workflow
  ☆40Jul 18, 2025Updated 8 months ago
• VirtualAlllocEx / CS-EDR-Enumeration

  View on GitHub
  Cobalt Strike Aggressor Script for identifying security products on Windows hosts — six enumeration methods rated by noise level, from si…
  ☆42Feb 6, 2026Updated last month
• shayanb / cryptojacking-first-paper

  View on GitHub
  A first look at browser-based Cryptojacking
  ☆16Jun 7, 2018Updated 7 years ago
• grayhatkiller / wambam-bof

  View on GitHub
  ☆48Dec 5, 2025Updated 3 months ago
• Helixo32 / NimReflectiveLoader

  View on GitHub
  NimReflectiveLoader is a Nim-based tool for in-memory DLL execution using Reflective DLL Loading.
  ☆31Jan 21, 2024Updated 2 years ago