my learning case about windows
☆21Feb 4, 2022Updated 4 years ago
Alternatives and similar repositories for windows-stuff
Users that are interested in windows-stuff are comparing it to the libraries listed below
Sorting:
- ADSI based SA tool☆17Apr 9, 2022Updated 3 years ago
- Automated (kinda) deployment of MalRDP infrastructure with Terraform & Ansible☆12Sep 15, 2023Updated 2 years ago
- A .net lib to generate an native coff executable☆13Apr 30, 2015Updated 10 years ago
- Golang PoC that sandboxes Defender (or other PPL) by setting its token integrity to Untrusted.☆12May 28, 2025Updated 9 months ago
- collect☆17Aug 29, 2019Updated 6 years ago
- ☆19Oct 2, 2022Updated 3 years ago
- ☆37Sep 28, 2021Updated 4 years ago
- Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.☆18Jan 21, 2022Updated 4 years ago
- Analysis of syscall sequence pattern from exploit codes for advanced system call sequence filtering for enhanced container security☆16May 21, 2023Updated 2 years ago
- It's a quick HTTPS server.☆14Oct 7, 2022Updated 3 years ago
- ☆25Jul 7, 2022Updated 3 years ago
- Add Shadow Credentials to a target object by editing their msDS-KeyCredentialLink attribute☆25Jun 5, 2024Updated last year
- CVE-2019-2890 WebLogic 反序列化RCE漏洞☆44Dec 8, 2019Updated 6 years ago
- HEVD Exploit: BufferOverflowNonPagedPoolNx on Windows 10 22H2 - Escalating from Low Integrity to SYSTEM via Aligned Chunk Confusion☆65Apr 22, 2025Updated 10 months ago
- lpe poc for cve-2022-21882☆49Feb 7, 2022Updated 4 years ago
- HEVD Exploit: ArbitraryWrite on Windows 10 22H2 - Bypassing KVA Shadow and SMEP via PML4 Entry Manipulation☆35Jul 10, 2024Updated last year
- ☆25Aug 21, 2022Updated 3 years ago
- Experience the power of a PHP webshell designed to overcome the limitations of blacklisted system/exec functions.☆26Jul 14, 2024Updated last year
- Tool to perform lateral movement between AAD joined devices☆65Jun 8, 2022Updated 3 years ago
- ☆36May 27, 2024Updated last year
- A Nuclei Template for Apache Log4j RCE (CVE-2021-44228) Detection with WAF Bypass Payloads☆23Dec 11, 2021Updated 4 years ago
- Hookers are cooler than patches.☆170Jan 21, 2022Updated 4 years ago
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.☆66May 2, 2023Updated 2 years ago
- Load any Beacon Object File using Powershell!☆260Dec 9, 2021Updated 4 years ago
- List the ETW provider(s) in the registration table of a process.☆80Sep 20, 2023Updated 2 years ago
- Shellcode Loader Engine for Windows☆27Jan 29, 2017Updated 9 years ago
- PoC to self-delete a binary in C#☆36Feb 6, 2024Updated 2 years ago
- a mini tool to dump password and NTLM hash from WDigest & MSV1_0 & tspkg, as a result of study of mimikatz☆83Sep 27, 2018Updated 7 years ago
- My personal shellcode loader☆32Mar 9, 2023Updated 2 years ago
- Simple reverse shell to avoid Win 11 defender detection☆122Dec 21, 2021Updated 4 years ago
- ☆142May 4, 2022Updated 3 years ago
- Dumping LSASS with a duplicated handle from custom LSA plugin☆204Feb 23, 2022Updated 4 years ago
- A module for CME that spiders across a domain.☆35Jul 15, 2022Updated 3 years ago
- C# Implementation of the Hell's Gate VX Technique☆216Jun 30, 2020Updated 5 years ago
- ☆667Nov 17, 2021Updated 4 years ago
- ☆38Apr 1, 2024Updated last year
- ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption☆92Mar 23, 2023Updated 2 years ago
- A Study in Obfuscation: Analyzing the effect of various techniques to bypass AV engines☆45Oct 27, 2022Updated 3 years ago
- Set Up WebDAV Server for Remote File Sharing and more☆35Aug 22, 2019Updated 6 years ago