xct / SeDebugAbuseLinks
Get SYSTEM via SeDebugPrivilege
☆20Updated 3 years ago
Alternatives and similar repositories for SeDebugAbuse
Users that are interested in SeDebugAbuse are comparing it to the libraries listed below
Sorting:
- ☆52Updated 2 years ago
- Simple C++ PoC of SeDebugPrivilege Privesc☆24Updated last year
- Automating payload generation for OSEP labs and exam.☆34Updated 2 years ago
- Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.☆15Updated 2 years ago
- a C# implementation for a shellcode loader that capable to bypass Cortex XDR and Sophos EDR.☆52Updated last month
- ☆29Updated 2 years ago
- Secretsdump C# version only supporting local (live) operation☆49Updated 2 months ago
- ☆17Updated 6 months ago
- A simple C++ Windows tool to get information about processes exposing named pipes.☆38Updated 3 months ago
- Create Anti-Copy DRM Malware☆58Updated 10 months ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆56Updated 3 years ago
- .bin file to shellcode convertor☆38Updated 11 months ago
- C# havoc implant☆100Updated 2 years ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section☆105Updated last year
- Arbitrary File Delete in Windows Installer before 10.0.19045.2193☆30Updated 2 years ago
- Certipy in Docker☆11Updated last year
- Modified versions of the Cobalt Strike Process Injection Kit☆95Updated last year
- Exploits a flaw in Remote Desktop Plus by monitoring and decrypting temporary .rdp files in %localappdata%/Temp, revealing credentials us…☆16Updated last year
- Bypass AMSI By Dividing files into multiple smaller files☆45Updated 2 years ago
- SAM Dumping in C#☆48Updated 5 months ago
- ☆88Updated 2 years ago
- PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy☆35Updated last year
- An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface. Implementation of ligolo-ng into sliver☆11Updated 4 months ago
- ☆29Updated 2 years ago
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆81Updated last year
- A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket☆59Updated 5 years ago
- Beacon Object Files (BOF) for Cobalt Strike.☆31Updated 10 months ago
- A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally …☆88Updated 2 years ago
- Bypass Constrained Language Mode in PowerShell☆29Updated 6 years ago
- CVE-2024-40711-exp☆42Updated 8 months ago