A persistant Windows Service Proof of Concept, where the Service will run after Restart or Shutdown, and invoke a given software executable
☆37Sep 28, 2023Updated 2 years ago
Alternatives and similar repositories for PersistantService
Users that are interested in PersistantService are comparing it to the libraries listed below
Sorting:
- ☆18Jan 14, 2026Updated last month
- Remote code execution in Power Platform connectors via JSON deserialization☆23Mar 30, 2023Updated 2 years ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆101Feb 28, 2023Updated 3 years ago
- ☆37Feb 11, 2023Updated 3 years ago
- Use CMSTP.exe to bypass UAC.☆52Jun 24, 2022Updated 3 years ago
- A bunch of scripts and code i wrote.☆149Nov 7, 2024Updated last year
- A handy InputBox command for any Windows c++ program☆15Jun 12, 2019Updated 6 years ago
- Small PoC of using a Microsoft signed executable as a lolbin.☆141Feb 27, 2023Updated 3 years ago
- I have documented all of the AMSI patches that I learned till now☆74Nov 4, 2025Updated 3 months ago
- idk man this was the default github name☆35Apr 23, 2023Updated 2 years ago
- ☆19Aug 10, 2022Updated 3 years ago
- Execute a payload at each right click on a file/folder in the explorer menu for persistence☆175Mar 15, 2023Updated 2 years ago
- This project is created for research into antivirus evasion by unhooking.☆18Sep 2, 2021Updated 4 years ago
- Cobalt Strike Beacon Object File (BOF) that uses handwritten shellcode to return the process Environment strings without touching any DLL…☆183Mar 13, 2023Updated 2 years ago
- Single stub direct and indirect syscalling with runtime SSN resolving for windows.☆140Sep 12, 2022Updated 3 years ago
- Exploitation of process killer drivers☆202Oct 17, 2023Updated 2 years ago
- APT38 Tactic PoC for Stealing 0days from security researchers☆323May 30, 2025Updated 9 months ago
- Simple .NET loader for loading and executing Powershell payloads☆17Nov 5, 2021Updated 4 years ago
- Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.☆242Sep 26, 2023Updated 2 years ago
- This script is used to unload PsSetCreateProcessNotifyRoutineEx, PsSetCreateProcessNotifyRoutine, PsSetLoadImageNotifyRoutine and PsSetCr…☆63Feb 11, 2024Updated 2 years ago
- All my Source Codes (Repos) for Red-Teaming & Pentesting + Blue Teaming☆233Oct 8, 2024Updated last year
- Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2☆293Jul 15, 2023Updated 2 years ago
- A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk☆473Jul 6, 2024Updated last year
- Small utility package for manipulating Windows process tokens☆26Apr 26, 2022Updated 3 years ago
- CVE-2018-6066 using VBA☆68Oct 24, 2022Updated 3 years ago
- ☆78Aug 1, 2023Updated 2 years ago
- ☆113Oct 10, 2022Updated 3 years ago
- ☆129Jun 28, 2023Updated 2 years ago
- ☆11Jun 16, 2021Updated 4 years ago
- A bridge to launch managed applications (.NET) into MS signed exe via dll injection☆13Aug 29, 2020Updated 5 years ago
- C++14 CSV Stream based on C File API☆10Mar 25, 2022Updated 3 years ago
- A small go harness that uses Ollama to orchestrate LLMs in a restricted process flow☆16Sep 10, 2024Updated last year
- Cobalt Strike notifications via NTFY.☆15Sep 24, 2024Updated last year
- Identify and exploit leaked handles for local privilege escalation.☆111Jun 19, 2023Updated 2 years ago
- Use hardware breakpoints to spoof the call stack for both syscalls and API calls☆202Jun 6, 2024Updated last year
- Extracts TEXT section of a PE, ELF, or Mach-O executable to shellcode☆105May 5, 2023Updated 2 years ago
- A method to execute shellcode using RegisterWaitForInputIdle API.☆55Apr 4, 2023Updated 2 years ago
- Titan: A generic user defined reflective DLL for Cobalt Strike☆85Nov 20, 2022Updated 3 years ago
- Inline syscalls made for MSVC supporting x64 and WOW64☆193Jul 10, 2023Updated 2 years ago