Lists (3)
Stars
windows-kernel-exploits Windows平台提权漏洞集合
linux-kernel-exploits Linux平台提权漏洞集合
🌴Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 9…
Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.
Dump cookies and credentials directly from Chrome/Edge process memory
A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
Bypass Chromium's App-Bound Encryption via Direct Syscall-based Reflective Process Hollowing. Extract cookies, passwords, payment methods & tokens from Chrome, Edge, Brave & Avast - fileless, user-…
Tool for injecting a shared object into a Linux process
Hide a process under Linux using the ld preloader (https://sysdig.com/blog/hiding-linux-processes-for-fun-and-profit/)
Exploit for 6.4 - 6.5 kernels and another exploit for 5.15 - 6.5
InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditiona…
在Windows环境下的进程注入方法:远程线程注入、创建进程挂起注入、反射注入、APCInject、SetWindowHookEX注入
Collection of Beacon Object Files (BOF) for Cobalt Strike
PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.
Collection of UAC Bypass Techniques Weaponized as BOFs
MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
Inject .NET assemblies into an existing process
A socksv5 proxy tool Written by CLang. 一款纯C实现的轻量内网穿透工具,支持正向,反向socks5代理隧道的搭建,支持跨平台使用。
C++ self-Injecting dropper based on various EDR evasion techniques.