Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...

C++ 8 1 Updated Oct 30, 2023

ASkyeye / LdrLibraryEx

Forked from Cracked5pider/LdrLibraryEx

A small x64 library to load dll's into memory.

C 5 2 Updated Nov 6, 2023

ASkyeye / DocPlz

Forked from d1rkmtrr/DocPlz

Documents Exfiltration project for fun and educational purposes

C++ 3 1 Updated Oct 3, 2023

ASkyeye / RedPersist

Forked from mertdas/RedPersist

C# 1 2 Updated Sep 25, 2023

ASkyeye / POSTDump

Forked from YOLOP0wn/POSTDump

C# 2 Updated Sep 13, 2023

ASkyeye / themebleed

Forked from exploits-forsale/themebleed

Proof-of-Concept for CVE-2023-38146 ("ThemeBleed")

C# 1 Updated Sep 13, 2023

ASkyeye / PPLBlade

Forked from tastypepperoni/PPLBlade

Protected Process Dumper Tool

Go 1 Updated Aug 30, 2023

ASkyeye / SharpLDAP

Forked from shellbr3ak/SharpLDAP

SharpLDAP is a tool written in C# that aims to do enumeration via LDAP queries

C# 1 Updated Jan 14, 2023

crisprss / Amsi_Bypass_In_2023

Forked from senzee1984/Amsi_Bypass_In_2023

Amsi Bypass payload that works on Windwos 11

PowerShell 1 1 Updated Jul 30, 2023

qi4L / NtRemoteLoad

Forked from florylsk/NtRemoteLoad

Remote Shellcode Injector

C++ 4 Updated Aug 27, 2023

Kara-4search / cmd2shellcode

Forked from scareing/cmd2shellcode

cmd2shellcode

C 1 Updated May 6, 2021

ASkyeye / DllNotificationInjection

Forked from Dec0ne/DllNotificationInjection

A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and remote processes.

C++ 6 Updated Aug 14, 2023

Kara-4search / ContainYourself

Forked from deepinstinct/ContainYourself

A POC of the ContainYourself research presented in DEF CON 31, which abuses the Windows containers framework to bypass EDRs.

C++ 2 Updated Jul 13, 2023

spotlesscoder / wsManager

Forked from sh1nu11bi/wsManager

Webshell Manager

C# 1 Updated Sep 17, 2019

ASkyeye / S4UTomato

Forked from wh0amitz/S4UTomato

Escalate Service Account To LocalSystem via Kerberos

C# 5 Updated Jul 30, 2023

gprime31 / WAF-bypass-xss-payloads

Forked from aaditya2098/noobstuffs

XSS payloads for bypassing WAF. This repository is updating continuously.

253 80 Updated Mar 15, 2024

H4de5-7 / Doge-Gabh

Forked from timwhitez/Doge-Gabh

GetProcAddressByHash/remap/full dll unhooking/Tartaru's Gate/Spoofing Gate/universal/Perun's Fart/Spoofing-Gate/EGG/RecycledGate/syswhisper/RefleXXion golang implementation

Go 1 Updated Aug 9, 2022

H4de5-7 / Doge-DumpMem

Forked from timwhitez/Doge-DumpMem

dump lsass

Go 2 Updated May 24, 2022

ASkyeye / hypobrychium

Forked from foxlox/hypobrychium

Duplicate not owned Token from Running Process

Pascal 1 Updated Jul 19, 2023

Avienma / process-inject

Forked from suvllian/process-inject

在Windows环境下的进程注入方法：远程线程注入、创建进程挂起注入、反射注入、APCInject、SetWindowHookEX注入

C 2 Updated Sep 22, 2018

ASkyeye / CS_COFFLoader

Forked from trustedsec/CS_COFFLoader

C# 2 1 Updated Jun 21, 2023

ASkyeye / WMIExec

Forked from WKL-Sec/WMIExec

Set of python scripts which perform different ways of command execution via WMI protocol.

Python 1 Updated Jun 26, 2023

ASkyeye / BOFMask

Forked from xforcered/BOFMask

C 1 Updated Jun 28, 2023

ASkyeye / Kernel-Process-Hollowing

Forked from XaFF-XaFF/Kernel-Process-Hollowing

Windows x64 kernel mode rootkit process hollowing POC.

C++ 1 Updated Jun 28, 2023

ASkyeye / DirectSysCall

Forked from rbmm/DirectSysCall

C++ 1 Updated Jun 30, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

SecStarBot

Block or report SecStarBot

Stars

crisprss / PerlinPuzzle-Webshell-PHP

uknowsec / WeChatMsg

ASkyeye / SharpReflectivePEInjection

ASkyeye / Mockingjay_BOF

ASkyeye / ssh-key-backdoor

Ridter / RealBlindingEDR