zeze-zeze/NamedPipeMaster

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/zeze-zeze/NamedPipeMaster)

zeze-zeze / NamedPipeMaster

a tool used to analyze and monitor in named pipes

☆194

Alternatives and similar repositories for NamedPipeMaster

Users that are interested in NamedPipeMaster are comparing it to the libraries listed below

Sorting:

Wh04m1001 / UserManagerEoP
View on GitHub
☆82Apr 9, 2024Updated last year
JanielDary / ImmoralFiber
View on GitHub
Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
☆283Sep 18, 2024Updated last year
floesen / KExecDD
View on GitHub
Admin to Kernel code execution using the KSecDD driver
☆264Apr 19, 2024Updated last year
CICADA8-Research / COMThanasia
View on GitHub
A set of programs for analyzing common vulnerabilities in COM
☆249Sep 8, 2024Updated last year
senzee1984 / EDRPrison
View on GitHub
Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry
☆459Aug 2, 2024Updated last year
CICADA8-Research / MyMSIAnalyzer
View on GitHub
Analyse MSI files for vulnerabilities
☆142Aug 30, 2024Updated last year
deepinstinct / ShimMe
View on GitHub
☆147Oct 29, 2024Updated last year
fin3ss3g0d / IoDllProxyLoad
View on GitHub
DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly
☆63Mar 19, 2024Updated last year
trickster0 / NamelessC2
View on GitHub
Nameless C2 - A C2 with all its components written in Rust
☆283Sep 26, 2024Updated last year
cyberark / PipeViewer
View on GitHub
A tool that shows detailed information about named pipes in Windows
☆738Nov 15, 2024Updated last year
klezVirus / DriverJack
View on GitHub
Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths
☆360Aug 11, 2024Updated last year
Black-Frost / windows-learning
View on GitHub
☆146Mar 29, 2025Updated 11 months ago
Kudaes / Eclipse
View on GitHub
Activation Context Hijack
☆170Aug 3, 2025Updated 7 months ago
Mayyhem / Maestro
View on GitHub
Abusing Azure services over C2
☆367Jan 20, 2026Updated last month
EspressoCake / ADIDNS_Parser
View on GitHub
Parser and reconciliation tooling for large Active Directory environments.
☆33Feb 18, 2025Updated last year
whokilleddb / funcshenanigans
View on GitHub
A bunch of shenanigans using functions, VEH and more
☆37Jun 8, 2025Updated 9 months ago
zeze-zeze / HITCON-2023-Demo-CVE-2023-20562
View on GitHub
☆61Aug 21, 2023Updated 2 years ago
xaitax / NTSleuth
View on GitHub
Comprehensive Windows Syscall Extraction & Analysis Framework
☆162Aug 30, 2025Updated 6 months ago
logangoins / Stifle
View on GitHub
.NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
☆150Feb 10, 2025Updated last year
Wh04m1001 / GamingServiceEoP
View on GitHub
☆150Mar 22, 2024Updated last year
synacktiv / DLHell
View on GitHub
Local & remote Windows DLL Proxying
☆169Jun 17, 2024Updated last year
CICADA8-Research / RemoteKrbRelay
View on GitHub
Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
☆637May 8, 2025Updated 10 months ago
mandiant / msi-search
View on GitHub
☆291Jul 20, 2023Updated 2 years ago
Friends-Security / RedirectThread
View on GitHub
Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techn…
☆199Jun 17, 2025Updated 8 months ago
CICADA8-Research / TypeLibWalker
View on GitHub
TypeLib persistence technique
☆140Oct 22, 2024Updated last year
0xEr3bus / RdpStrike
View on GitHub
Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.
☆250Jun 11, 2024Updated last year
ricardojoserf / TrickDump
View on GitHub
Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!
☆539May 9, 2025Updated 9 months ago
0xsp-SRD / MDE_Enum
View on GitHub
comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
☆211Jun 10, 2024Updated last year
daem0nc0re / VectorKernel
View on GitHub
PoCs for Kernelmode rootkit techniques research.
☆432Nov 4, 2025Updated 4 months ago
mansk1es / CVE-2024-21111
View on GitHub
Oracle VirtualBox Elevation of Privilege (Local Privilege Escalation) Vulnerability
☆216May 9, 2024Updated last year
PeterGabaldon / CVE-2024-7479_CVE-2024-7481
View on GitHub
TeamViewer User to Kernel Elevation of Privilege PoC. CVE-2024-7479 and CVE-2024-7481. ZDI-24-1289 and ZDI-24-1290. TV-2024-1006.
☆136Dec 22, 2024Updated last year
zeze-zeze / ioctlance
View on GitHub
A tool that is used to hunt vulnerabilities in x64 WDM drivers
☆441Dec 7, 2025Updated 3 months ago
BlackSnufkin / NyxInvoke
View on GitHub
NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
☆234Feb 12, 2025Updated last year
warpnet / MS-RPC-Fuzzer
View on GitHub
Gain insights into MS-RPC implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By f…
☆326Oct 20, 2025Updated 4 months ago
passthehashbrowns / VectoredExceptionHandling
View on GitHub
☆108Aug 21, 2024Updated last year
hasherezade / thread_namecalling
View on GitHub
Process Injection using Thread Name
☆306Apr 18, 2025Updated 10 months ago
tykawaii98 / CVE-2024-30088
View on GitHub
☆286Jul 31, 2024Updated last year
ColeHouston / Sunder
View on GitHub
Windows rootkit designed to work with BYOVD exploits
☆216Jan 18, 2025Updated last year
reveng007 / DarkWidow
View on GitHub
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …
☆779Jan 26, 2026Updated last month