senzee1984 / micr0_shell
micr0shell is a Python script that dynamically generates Windows X64 PIC Null-Free reverse shell shellcode.
☆176Updated 7 months ago
Alternatives and similar repositories for micr0_shell:
Users that are interested in micr0_shell are comparing it to the libraries listed below
- Collection of UAC Bypass Techniques Weaponized as BOFs☆467Updated last year
- Attempt at Obfuscated version of SharpCollection☆203Updated last week
- UAC Bypass By Abusing Kerberos Tickets☆492Updated last year
- A list of python tools to help create an OPSEC-safe Cobalt Strike profile.☆401Updated 11 months ago
- Fileless atexec, no more need for port 445☆354Updated 10 months ago
- Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.☆289Updated 10 months ago
- DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYS…☆369Updated 6 months ago
- Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!☆422Updated 2 weeks ago
- Terminate AV/EDR Processes using kernel driver☆339Updated last year
- Materials for the workshop "Red Team Ops: Havoc 101"☆365Updated 4 months ago
- Amsi Bypass payload that works on Windwos 11☆375Updated last year
- AV bypass while you sip your Chai!☆217Updated 9 months ago
- SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection s…☆296Updated 9 months ago
- Leak of any user's NetNTLM hash. Fixed in KB5040434☆251Updated 6 months ago
- ☆320Updated 2 weeks ago
- PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.☆390Updated 8 months ago
- transform your payload into ipv4/ipv6/mac arrays☆166Updated 2 years ago
- Escalate Service Account To LocalSystem via Kerberos☆393Updated last year
- Awesome AV/EDR/XDR Bypass Tips☆263Updated last year
- A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.☆385Updated 7 months ago
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆562Updated 7 months ago
- Extract and execute a PE embedded within a PNG file using an LNK file.☆355Updated 3 months ago
- Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver☆257Updated 2 weeks ago
- MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.☆506Updated 6 months ago
- A Tool that aims to evade av with binary padding☆145Updated 7 months ago
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆274Updated 9 months ago
- Local privilege escalation from SeImpersonatePrivilege using EfsRpc.☆309Updated 2 years ago
- BOF for Kerberos abuse (an implementation of some important features of the Rubeus).☆431Updated last week
- Kill AV/EDR leveraging BYOVD attack☆339Updated last year
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆150Updated 9 months ago