sensepost / offensive-rpcLinks
Offensive RPC PoC
☆89Updated 3 years ago
Alternatives and similar repositories for offensive-rpc
Users that are interested in offensive-rpc are comparing it to the libraries listed below
Sorting:
- ☆82Updated 3 years ago
- all credits go to @mgeeky☆64Updated 3 years ago
- Bypass UAC elevation on Windows 8 (build 9600) & above.☆56Updated 2 years ago
- Dell Driver EoP (CVE-2021-21551)☆32Updated 3 years ago
- A *very* imperfect attempt to correlate Kernel32 function calls to native API (Nt/Zw) counterparts/execution flow.☆28Updated 3 years ago
- A C implementation of the Sektor7 "A Thief" Windows privesc technique.☆65Updated 3 years ago
- Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used☆92Updated 4 years ago
- ☆54Updated 2 years ago
- ☆62Updated 3 years ago
- A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/☆31Updated last year
- Windows x64 Process Injection via Ghostwriting with Dynamic Configuration☆29Updated 3 years ago
- DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64)☆27Updated 5 years ago
- A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously☆31Updated 2 years ago
- Load a dynamic library from memory using a fuse mount☆31Updated last year
- Playing with PE's and Building Structures by Hand☆22Updated 3 years ago
- Injects shellcode into remote processes using direct syscalls☆78Updated 4 years ago
- A simple dumper as FreshyCalls' PoC. That's what's trendy, isn't it? ¯\_(ツ)_/¯☆39Updated 4 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆31Updated 3 years ago
- CSharp Writeups for HackSys Extreme Vulnerable Driver☆43Updated 3 years ago
- ☆36Updated last year
- A simple PE loader.☆26Updated 2 years ago
- Executes shellcode from a remote server and aims to evade in-memory scanners☆31Updated 5 years ago
- ☆41Updated 2 years ago
- A library to parse, modify, and implement Malleable C2 profiles☆26Updated 6 years ago
- A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP☆34Updated 4 years ago
- ☆21Updated 4 years ago
- Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions☆54Updated 3 years ago
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 3 years ago
- Simple skeleton for a CPP DLL☆38Updated 5 years ago
- LSASS enumeration like pypykatz written in C-Lang☆20Updated 3 years ago