tyranid / DeviceGuardBypassesLinks
A repository of some of my Windows 10 Device Guard Bypasses
☆139Updated 8 years ago
Alternatives and similar repositories for DeviceGuardBypasses
Users that are interested in DeviceGuardBypasses are comparing it to the libraries listed below
Sorting:
- Reflective Polymorphism☆106Updated 7 years ago
- PoC for persisting .NET payloads in Windows Notification Facility (WNF) state names using low-level Windows Kernel API calls.☆152Updated 6 years ago
- A tool to exploit .NET DCOM for EoP and RCE. Is fixed in latest versions of the .NET.☆92Updated 10 years ago
- Tool for injecting a "TCP Relay" managed assembly into unmanaged processes☆117Updated 6 years ago
- PoC dlls for Task Scheduler COM Hijacking☆94Updated 9 years ago
- UAC Bypass with mmc via alpc☆157Updated 6 years ago
- A collection of tools to enumerate and analyse Windows DACLs☆109Updated 10 years ago
- A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.☆100Updated 7 years ago
- ☆53Updated 8 years ago
- Workshop material for a Windows Attack Surface Analysis Workshop☆67Updated 6 years ago
- CVE-2018-8440 standalone exploit☆79Updated 6 years ago
- Public documents related to my talk "Bypass Windows Exploit Guard ASR" at Offensive Con 2019.☆95Updated 6 years ago
- Shim database persistence (Fin7 TTP)☆37Updated 5 years ago
- VBS Reversed TCP Meterpreter Stager☆89Updated 8 years ago
- A "tiny" meterpreter stager☆127Updated 6 years ago
- ☆62Updated 5 years ago
- NCC Group's analysis and exploitation of CVE-2017-8759 along with further refinements☆95Updated 8 years ago
- Windows Stagers to circumvent restrictive network environments☆67Updated last year
- CACTUSTORCH: Payload Generation for Adversary Simulations☆76Updated 7 years ago
- Pazuzu: Reflective DLL to run binaries from memory☆215Updated 5 years ago
- BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET☆148Updated 5 years ago
- Use bitsadmin to maintain persistence and bypass Autoruns☆66Updated 8 years ago
- ☆64Updated 9 years ago
- Advanced Portable Executable File Analyzer And Disassembler 32 & 64 Bit☆100Updated 6 years ago
- A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…☆43Updated 4 years ago
- ReaCOM has got a lot of tools to use and is related to component object model☆74Updated 5 years ago
- A Generic Windows Memory Scraping Tool☆71Updated 8 years ago
- ☆46Updated 6 years ago
- Mario & Luigi - Tools for sniffing Windows Named Pipes communication☆129Updated 8 years ago
- Ps1jacker is a tool for generating COM Hijacking payload.☆60Updated 7 months ago