tehstoni / RustyKeys
UAC Bypass using CMSTP in Rust
☆25Updated 3 months ago
Alternatives and similar repositories for RustyKeys:
Users that are interested in RustyKeys are comparing it to the libraries listed below
- ☆53Updated 5 months ago
- Windows Thread Pool Injection Havoc Implementation☆28Updated last year
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.☆30Updated last month
- A collection of position independent coding resources☆67Updated last month
- A python script that automates a C2 Profile build☆22Updated last week
- Cortex EDR Ransomware protection Bypass☆20Updated last month
- Construct the payload at runtime using an array of offsets☆63Updated 9 months ago
- The Swiss army knife of evasion tool that bypasses AMSI, Applocker, and CLM mode simultaneously.☆27Updated last year
- 「⚠️」Performing a BYOVD on the truesight.sys driver☆33Updated 3 months ago
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆72Updated last month
- Windows Active DIrectory Pentesting documentation.☆17Updated 9 months ago
- Demoting PPL anti-malware services to less than a guest user☆59Updated last month
- Enable or Disable TokenPrivilege(s)☆13Updated 10 months ago
- ☆103Updated 4 months ago
- Tool designed to simplify the generation of proxy DLLs while addressing common conflicts related to windows.h☆37Updated 5 months ago
- Hunting and injecting RWX 'mockingjay' DLLs in pure nim☆57Updated 3 months ago
- Situational Awareness script to identify how and where to run implants☆48Updated 3 months ago
- GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…☆32Updated 4 months ago
- BOF for C2 framework☆40Updated 4 months ago
- Section-based payload obfuscation technique for x64☆59Updated 7 months ago
- shell code example☆33Updated 2 weeks ago
- Windows Administrator level Implant.☆49Updated 5 months ago
- A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.☆72Updated 3 weeks ago
- Sniffing files generator☆55Updated last month
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆81Updated 2 weeks ago
- A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders Stardust☆84Updated 11 months ago
- Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks☆98Updated 3 months ago
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆38Updated 8 months ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆73Updated 7 months ago