tijme / cmstplua-uac-bypass
Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.
☆133Updated last year
Related projects: ⓘ
- CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking☆214Updated last year
- ☆143Updated last year
- BOF combination of KillDefender and Backstab☆153Updated last year
- An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are a…☆118Updated last year
- A Beacon Object File (BOF) template for Visual Studio☆129Updated last month
- Useful Cobalt Strike BOFs found or used during engagements☆129Updated 11 months ago
- Dumping LSASS with a duplicated handle from custom LSA plugin☆194Updated 2 years ago
- Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE☆196Updated last year
- Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.☆143Updated last year
- Bypass Detection By Randomising ROR13 API Hashes☆131Updated 2 years ago
- ☆201Updated 4 months ago
- CobaltWhispers is an aggressor script that utilizes a collection of Beacon Object Files (BOF) for Cobalt Strike to perform process inject…☆225Updated last year
- ☆179Updated this week
- ApexLdr is a DLL Payload Loader written in C☆98Updated 2 months ago
- A Go implementation of Cobalt Strike style BOF/COFF loaders.☆139Updated this week
- Cobalt Strike beacon object file implementation for trusted path UAC bypass. The target executable will be called without involving "cmd.…☆115Updated 3 years ago
- Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.☆224Updated 3 months ago
- ☆234Updated last year
- Beacon Object File PoC implementation of KillDefender☆213Updated 2 years ago
- ☆205Updated this week
- ☆73Updated 10 months ago
- Cobalt Strike User Defined Reflective Loader (UDRL). Check branches for different functionality.☆134Updated 2 years ago
- Improved version of EKKO by @5pider that Encrypts only Image Sections☆110Updated last year
- .NET assembly loader with patchless AMSI and ETW bypass☆268Updated last year
- A beacon object file implementation of PoolParty Process Injection Technique.☆313Updated 8 months ago
- ☆132Updated last year
- ErebusGate for Nim Bypass AV/EDR☆159Updated last year
- Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.☆17Updated 2 years ago
- ☆116Updated last year
- ☆41Updated 5 months ago