xct / SeDebugAbuse
Get SYSTEM via SeDebugPrivilege
☆20Updated 2 years ago
Alternatives and similar repositories for SeDebugAbuse:
Users that are interested in SeDebugAbuse are comparing it to the libraries listed below
- Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.☆15Updated 2 years ago
- ☆48Updated 2 years ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section☆101Updated last year
- Secretsdump C# version only supporting local (live) operation☆48Updated last week
- Arbitrary File Delete in Windows Installer before 10.0.19045.2193☆29Updated 2 years ago
- A simple C++ Windows tool to get information about processes exposing named pipes.☆37Updated last month
- Automating payload generation for OSEP labs and exam.☆34Updated 2 years ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆55Updated 3 years ago
- ☆88Updated 2 years ago
- An old Windows workstations LPE for domain environments without LDAP signing/channel binding.☆32Updated 2 years ago
- Exploits a flaw in Remote Desktop Plus by monitoring and decrypting temporary .rdp files in %localappdata%/Temp, revealing credentials us…☆16Updated last year
- Run Cobalt Strike BOFs in Brute Ratel C4!☆65Updated last week
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆91Updated 2 years ago
- C# havoc implant☆99Updated 2 years ago
- Simple C++ PoC of SeDebugPrivilege Privesc☆24Updated last year
- ☆29Updated 2 years ago
- lsassdump via RtlCreateProcessReflection and NanoDump☆81Updated 6 months ago
- Alternative Shellcode Execution Via Callbacks in C# with P/Invoke☆76Updated 2 years ago
- ☆29Updated 2 years ago
- PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy☆35Updated last year
- Python3 rewrite of AsOutsider features of AADInternals☆44Updated 4 months ago
- SeManageVolumePrivilege to SYSTEM☆100Updated last year
- ☆141Updated 2 years ago
- this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…☆86Updated 2 years ago
- ☆62Updated 2 years ago
- JustGetDA, a cheat sheet which will aid you through internal network & red team engagements.☆13Updated last year
- Bypass AMSI By Dividing files into multiple smaller files☆45Updated 2 years ago
- A repository with my code snippets for research/education purposes.☆50Updated last year
- Lsass dumper evading (some) EDR detection☆23Updated 2 months ago
- Some of the presentations, workshops, and labs I gave at public conferences.☆33Updated 7 months ago