Lists (3)
Stars
windows-kernel-exploits Windows平台提权漏洞集合
linux-kernel-exploits Linux平台提权漏洞集合
🌴Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 9…
Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.
Bypass Chromium's App-Bound Encryption via Direct Syscall-based Reflective Process Hollowing. Extract cookies, passwords, payment methods & tokens from Chrome, Edge, Brave & Avast - fileless, user-…
Dump cookies and credentials directly from Chrome/Edge process memory
A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
Tool for injecting a shared object into a Linux process
Hide a process under Linux using the ld preloader (https://sysdig.com/blog/hiding-linux-processes-for-fun-and-profit/)
Exploit for 6.4 - 6.5 kernels and another exploit for 5.15 - 6.5
InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditiona…
Collection of Beacon Object Files (BOF) for Cobalt Strike
在Windows环境下的进程注入方法:远程线程注入、创建进程挂起注入、反射注入、APCInject、SetWindowHookEX注入
PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.
Collection of UAC Bypass Techniques Weaponized as BOFs
MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
Inject .NET assemblies into an existing process
A socksv5 proxy tool Written by CLang. 一款纯C实现的轻量内网穿透工具,支持正向,反向socks5代理隧道的搭建,支持跨平台使用。
A small x64 library to load dll's into memory.