w1u0u1 / ktView external linksLinks
Kernel file/process/object tool
☆69Aug 4, 2021Updated 4 years ago
Alternatives and similar repositories for kt
Users that are interested in kt are comparing it to the libraries listed below
Sorting:
- Custom implementation of DbgHelp's MiniDumpWriteDump function. Uses static syscalls to replace low-level functions like NtReadVirtualMemo…☆128Jan 18, 2022Updated 4 years ago
- X86 version of syswhispers2 / x86 direct system call☆330Jan 28, 2021Updated 5 years ago
- C# project to create or modify existing LNKs☆54Oct 18, 2022Updated 3 years ago
- POCs for Shellcode Injection via Callbacks☆411Feb 23, 2021Updated 4 years ago
- A collection of tools to abuse chrome browser☆298Jan 15, 2021Updated 5 years ago
- ☆51Sep 18, 2020Updated 5 years ago
- DLLhijack winmm.dll☆116May 20, 2024Updated last year
- SharpAddDomainMachine☆69Oct 12, 2021Updated 4 years ago
- 非涉密源码☆19Mar 13, 2024Updated last year
- Convert native dll to shellcode, and support exported function☆25Feb 10, 2021Updated 5 years ago
- Out-of-the-Box Tool to Obfuscate Excel XLS. Include Obfuscation & Hide for Cell Labels & BoundSheets☆48Aug 4, 2021Updated 4 years ago
- bypass BeaconEye☆89Sep 9, 2021Updated 4 years ago
- A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.☆220May 3, 2023Updated 2 years ago
- RDI implementation in Nim☆64Dec 12, 2020Updated 5 years ago
- A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.☆41Dec 31, 2020Updated 5 years ago
- Use current thread token to execute command☆15Jan 27, 2021Updated 5 years ago
- ☆52Dec 11, 2019Updated 6 years ago
- 过去写的一些Windows安全研究相关代码☆135Feb 2, 2019Updated 7 years ago
- CVE-2019-1040 with Kerberos delegation☆33Jun 18, 2021Updated 4 years ago
- Decrypt stored WinSCP Passwords.☆24May 4, 2015Updated 10 years ago
- Play Doh Windows ACL Tools☆64Sep 7, 2022Updated 3 years ago
- SharpClipHistory is a .NET application written in C# that can be used to read the contents of a user's clipboard history in Windows 10 st…☆200Jan 23, 2020Updated 6 years ago
- CVE-2020-1066-EXP支持Windows 7和Windows Server 2008 R2操作系统☆187Jun 17, 2020Updated 5 years ago
- Exchange2010 authorized RCE☆157Dec 24, 2020Updated 5 years ago
- Steal privileged token to obtain SYSTEM shell☆252Jul 14, 2020Updated 5 years ago
- A way to delete a locked file, or current running executable, on disk.☆616Nov 5, 2025Updated 3 months ago
- weaponized tool for CVE-2020-17144☆159Dec 9, 2020Updated 5 years ago
- 用CSharp写的一款信息搜集工具,目前支持Navicat、TeamView、Xshell、SecureCRT产品的密码解密☆251Aug 26, 2020Updated 5 years ago
- Kernel mode to user mode injector☆11Mar 31, 2020Updated 5 years ago
- NativePayload_TiACBT (Remote Thread Injection + C# Async Method + CallBack Functions Technique)☆13Jun 6, 2023Updated 2 years ago
- Exploitation Script for CVE-2020-0688 "Microsoft Exchange default MachineKeySection deserialize vulnerability"☆11Apr 1, 2020Updated 5 years ago
- Golang Direct Syscall☆31Sep 2, 2021Updated 4 years ago
- SLib is a sandbox evasion library that implements some of the checks from https://evasions.checkpoint.com in C#☆66Aug 29, 2023Updated 2 years ago
- Example of running C3 (https://github.com/FSecureLABS/C3) in a Docker container☆27Oct 24, 2021Updated 4 years ago
- Some source code to demonstrate avoiding certain direct syscall detections by locating and JMPing to a legitimate syscall instruction wit…☆218Feb 20, 2023Updated 2 years ago
- Process Ghosting Tool☆176Jun 22, 2021Updated 4 years ago
- Tunnellable HTTP/HTTPS socks4a proxy written in C# and deployable via PowerShell☆498Mar 15, 2023Updated 2 years ago
- ReflectiveDLL☆156Mar 16, 2020Updated 5 years ago
- ☆65Nov 12, 2022Updated 3 years ago