zha0gongz1 / weakenDefenderPrivLinks
Without closing windows defender, to make defender useless by removing its token privileges and lowering the token integrity.
☆32Updated 3 years ago
Alternatives and similar repositories for weakenDefenderPriv
Users that are interested in weakenDefenderPriv are comparing it to the libraries listed below
Sorting:
- Change hash for a signed pe☆16Updated last year
- Loading Fileless Remote PE from URI to memory with argument passing and ETW patching and NTDLL unhooking and No New Thread technique☆67Updated 2 years ago
- ☆56Updated 2 years ago
- This is a simple project made to evade https://github.com/thefLink/Hunt-Sleeping-Beacons by using a busy wait instead of beacon's built i…☆34Updated 3 years ago
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.☆64Updated 2 years ago
- Indirect NT syscalls LSASS dumper.☆45Updated last year
- Use CMSTP.exe to bypass UAC.☆43Updated 3 years ago
- Repo that holds random POCs☆51Updated last year
- Persistence via Shell Extensions☆61Updated last year
- x64 version☆36Updated 3 years ago
- Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process☆45Updated 2 years ago
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆50Updated last year
- ☆42Updated last year
- 32 bit process inject shellcode to 32 bit process and 64 bit process☆34Updated 2 years ago
- Evasive loader to bypass static detection☆58Updated last year
- My personal shellcode loader☆31Updated 2 years ago
- ☆50Updated 2 years ago
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated 2 years ago
- Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping☆56Updated 2 years ago
- ☆15Updated 2 years ago
- Just another version of the custom stack call from Proxy-Function-Calls-For-ETwTI☆35Updated 2 years ago
- Artemis - C++ Hell's Gate Syscall Implementation☆33Updated last year
- It stinks☆102Updated 3 years ago
- Beacon Object File (BOF) Template☆51Updated 7 months ago
- A work in progress BOF/COFF loader in Rust☆50Updated 2 years ago
- A basic C2 framework written in C☆60Updated 11 months ago
- CLIPBRDWNDCLASS process injection technique(BOF) - execute beacon shellcode in callback☆69Updated 2 years ago
- Exploits undocumented elevated COM interface ICMLuaUtil via process spoofing to edit registry then calls ColorDataProxy to trigger UAC b…☆138Updated 2 years ago
- HookDetection☆46Updated 3 years ago
- A nice process dumping tool☆82Updated 2 years ago