seahop Goto Github PK

threadlessinject-c

This repository implements Threadless Injection in C

threatcheck

Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.

titan

Titan: A generic user defined reflective DLL for Cobalt Strike

titanldr-ng

A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge years ago.

trevorc2

TrevorC2 is a legitimate website (browsable) that tunnels client/server communications for covert command execution.

ttyinject

Get root via TTY / TIOCSTI stuffing

tweetter

Simple Twitter Bot, made with Selenium and JavaScript.

uac-bof-bonanza

Collection of UAC Bypass Techniques Weaponized as BOFs

uac-silentclean

New UAC bypass for Silent Cleanup for CobaltStrike

uac_bypass_in_the_wild

Windows 10 UAC bypass for all executable files which are autoelevate true .

uacme

Defeating Windows User Account Control

unhookingdll

This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hollowing

unhookingpatch

Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime

user-behavior-mapping-tool

vba-runpe

A VBA implementation of the RunPE technique or how to bypass application whitelisting.

vx-api

Collection of various WINAPI tricks / features used or abused by Malware

walkwhisper

Windows API header file parsing tool to generate source code for Windows API hashing

whids

Open Source EDR for Windows

win32_offensive_cheatsheet

Win32 and Kernel abusing techniques for pentesters

windbg_scripts

Useful scripts for WinDbg using the debugger data model

windows-coerced-authentication-methods

A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.

windows-dll-hijacking

Project for identifying executables and DLLs vulnerable to relative path DLL hijacking.

windows-internals

Important notes and topics on my journey towards mastering Windows Internals

windows10-customkernelsigners

Load self-signed drivers without TestSigning or disable DSE. Transferred from https://github.com/DoubleLabyrinth/Windows10-CustomKernelSigners

windows_lpe_afd_cve-2023-21768

LPE exploit for CVE-2023-21768

windowsexploitationresources

Resources for Windows exploit development

wireproxy

Wireguard client that exposes itself as a socks5 proxy

wmiprocesswatcher

A CIA tradecraft technique to asynchronously detect when a process is created using WMI.

wsgidav

A generic and extendable WebDAV server based on WSGI

xor_encodedecode

Basic XOR function in CPP