rtfmkiesel / loldrivers-clientLinks
Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
☆82Updated last year
Alternatives and similar repositories for loldrivers-client
Users that are interested in loldrivers-client are comparing it to the libraries listed below
Sorting:
- Find DLLs with RWX section☆81Updated last year
- ☆38Updated 2 years ago
- a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab☆63Updated 5 months ago
- RDLL for Cobalt Strike beacon to silence sysmon process☆88Updated 2 years ago
- Bypass AMSI By Dividing files into multiple smaller files☆45Updated 2 years ago
- Example code samples from our ScriptBlock Smuggling Blog post☆90Updated 11 months ago
- This project is an implant framework designed for long term persistent access to Windows machines.☆110Updated last year
- Slide decks and/or materials from conference presentations☆56Updated 2 years ago
- A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.☆62Updated last year
- ☆59Updated last year
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆83Updated 2 years ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section☆103Updated last year
- This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)☆48Updated last year
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆148Updated last year
- malleable profile generator GUI for Havoc☆55Updated 2 years ago
- Windows Thread Pool Injection Havoc Implementation☆29Updated last year
- Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell pro…☆85Updated last year
- Detect userland hooks placed by AV/EDR☆27Updated last year
- A PoC for achieving persistence via push notifications on Windows☆46Updated last year
- Situational Awareness script to identify how and where to run implants☆49Updated 5 months ago
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- Docker container for running CobaltStrike 4.10☆37Updated 8 months ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 2 years ago
- ☆107Updated 2 years ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆74Updated 2 years ago
- I have documented all of the AMSI patches that I learned till now☆72Updated 2 months ago
- Construct the payload at runtime using an array of offsets☆63Updated 11 months ago
- Reasonably undetected shellcode stager and executer.☆37Updated last week
- Create Anti-Copy DRM Malware☆57Updated 9 months ago
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆56Updated 2 years ago