sailay1996 / FileWrite2systemLinks
File Write Weapon for Privilege Escalation To get SYSTEM
☆18Updated 5 years ago
Alternatives and similar repositories for FileWrite2system
Users that are interested in FileWrite2system are comparing it to the libraries listed below
Sorting:
- Create a Run registry key with direct system calls. Inspired by @Cneelis's Dumpert and SharpHide.☆77Updated 5 years ago
- AppXSVC Service race condition - privilege escalation☆28Updated 6 years ago
- A simple injector that uses LoadLibraryA☆18Updated 5 years ago
- Penetration Test / Read Team - C# tools repository☆57Updated 3 years ago
- Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)☆26Updated 5 years ago
- C++ implant that interfaces with a SK8PARK server☆49Updated 4 years ago
- Python 3 server used to control SK8RAT implant☆36Updated 4 years ago
- Privesc through import of Sheduled tasks + Hardlinks - CVE-2019-1069☆36Updated 6 years ago
- The Hunt for Malicious Strings☆13Updated 4 years ago
- adding a backdooruser using win32api☆80Updated 4 years ago
- (Sim)ulate (Ba)zar Loader☆29Updated 4 years ago
- ☆55Updated 3 years ago
- Recreating and reviewing the Windows persistence methods☆39Updated 3 years ago
- Applying some AV evasion techniques on a metasploit reverse shell☆18Updated 4 years ago
- Red Team C2 and Post Exploitation code☆36Updated 3 weeks ago
- I used this to see if an EDR is running in Safe Mode☆37Updated 4 years ago
- XOR crypt/decrypt using C#☆12Updated 4 years ago
- Initial Commit of Coresploit☆56Updated 3 years ago
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆40Updated 4 years ago
- (kinda) Malicious Outlook Reader☆136Updated 4 years ago
- AMSI Bypass Via the Heap☆107Updated 4 years ago
- C++ function that will automagically unhook a specified Windows API☆63Updated 4 years ago
- A curated list of tools and techniques written from experience in weaponization of malware☆37Updated last year
- Execute Mimikatz with different technique☆51Updated 3 years ago
- Assembly HellGate implementation that directly calls Windows System Calls and displays the PPID of the explorer.exe process☆103Updated 2 years ago
- ☆48Updated 4 years ago
- Automate AV evasion by calling AMSI☆88Updated 2 years ago
- C2Bridges allow developers to create new custom communication protocols and quickly utilize them within Covenant.☆69Updated 4 years ago
- A small commented POC for removing API hooks placed by AV/EDR.☆34Updated 5 years ago
- ☆18Updated 4 years ago