sailay1996 / awesome_windows_logical_bugsView external linksLinks
collect for learning cases
☆595Jun 16, 2024Updated last year
Alternatives and similar repositories for awesome_windows_logical_bugs
Users that are interested in awesome_windows_logical_bugs are comparing it to the libraries listed below
Sorting:
- ☆835Dec 13, 2022Updated 3 years ago
- This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System f…☆285May 14, 2020Updated 5 years ago
- Weaponizing for privileged file writes bugs with windows problem reporting☆244May 10, 2022Updated 3 years ago
- Resources for Windows exploit development☆1,648Dec 20, 2021Updated 4 years ago
- Windows 10 UAC bypass for all executable files which are autoelevate true .☆642Dec 9, 2019Updated 6 years ago
- List of Awesome Advanced Windows Exploitation References☆1,546Jan 13, 2022Updated 4 years ago
- Windows - Weaponizing privileged file writes with the Update Session Orchestrator service☆402Jun 6, 2020Updated 5 years ago
- Dump of win32k POCs for bugs I've found☆381Mar 6, 2022Updated 3 years ago
- Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)☆426Apr 22, 2021Updated 4 years ago
- Windows Privilege Escalation from User to Domain Admin.☆1,438Dec 18, 2022Updated 3 years ago
- A method of bypassing EDR's active projection DLL's by preventing entry point exection☆1,164Mar 31, 2021Updated 4 years ago
- AV/EDR evasion via direct system calls.☆1,988Jan 1, 2023Updated 3 years ago
- ☆234Sep 10, 2017Updated 8 years ago
- Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019☆1,808Sep 4, 2024Updated last year
- Also known by Microsoft as Knifecoat☆1,151Dec 22, 2022Updated 3 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,594Jul 10, 2023Updated 2 years ago
- Physmem2profit can be used to create a minidump of a target hosts' LSASS process by analysing physical memory remotely☆424Jul 27, 2022Updated 3 years ago
- LSASS memory dumper using direct system calls and API unhooking.☆1,577Jan 5, 2021Updated 5 years ago
- Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting☆363Dec 19, 2022Updated 3 years ago
- Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.☆753Nov 16, 2021Updated 4 years ago
- Tool to bypass LSA Protection (aka Protected Process Light)☆986Dec 4, 2022Updated 3 years ago
- A Bind Shell Using the Fax Service and a DLL Hijack☆330May 3, 2020Updated 5 years ago
- Adaptive DLL hijacking / dynamic export forwarding☆808Jul 6, 2020Updated 5 years ago
- A way to delete a locked file, or current running executable, on disk.☆616Nov 5, 2025Updated 3 months ago
- Dump the memory of a PPL with a userland exploit☆891Jul 24, 2022Updated 3 years ago
- Set of tools to analyze Windows sandboxes for exposed attack surface.☆2,262Nov 6, 2025Updated 3 months ago
- Another Windows Local Privilege Escalation from Service Account to System☆1,148Jan 9, 2021Updated 5 years ago
- DEFCON 27 workshop - Modern Debugging with WinDbg Preview☆743Nov 1, 2024Updated last year
- Microsoft » Windows 10 : Security Vulnerabilities☆923Nov 26, 2025Updated 2 months ago
- Proof of concept exploit of Windows Update Orchestrator Service Elevation of Privilege Vulnerability☆125Jul 30, 2020Updated 5 years ago
- Tunnellable HTTP/HTTPS socks4a proxy written in C# and deployable via PowerShell☆498Mar 15, 2023Updated 2 years ago
- Just another Windows Process Injection☆408Aug 7, 2020Updated 5 years ago
- PoC to demonstrate how CLR ETW events can be tampered.☆192Mar 26, 2020Updated 5 years ago
- Obfuscate specific windows apis with different apis☆1,021Feb 21, 2021Updated 4 years ago
- Collection of Offensive C# Tooling☆1,468Feb 6, 2023Updated 3 years ago
- Windows 10 Privilege Escalation (magnifier.exe) via Dll Search Order Hijacking☆142May 23, 2020Updated 5 years ago
- Kernel mode WinDbg extension and PoCs for token privilege investigation.☆900Jan 21, 2025Updated last year
- A collection of links related to VMware escape exploits☆1,488Sep 4, 2024Updated last year
- A protective and Low Level Shellcode Loader that defeats modern EDR systems.☆917Mar 20, 2024Updated last year