kevin worst's repositories
fileSearcher
A simple BOF (Beacon Object File) to search files in the system
VectorKernel
PoCs for Kernel-mode rootkit techniques research.
CoercedPotatoRDLL
Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege
uploadserver
Python's http.server extended to include a file upload page
AceLdr
Cobalt Strike UDRL for memory scanner evasion.
BOF.NET
A .NET Runtime for Cobalt Strike's Beacon Object Files
BYOVD
Some POCs for my BYOVD research
CVE-2023-36427
Report and exploit of CVE-2023-36427
FakeToa
TCP IP伪造,建议使用 ubuntu 22.04
GhostDriver
yet another AV killer tool using BYOVD
GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
Havoc
The Havoc Framework
Kerbeus-BOF
BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
MsRdpEx
Microsoft RDP Client Extensions
NtlmThief
Extracting NetNTLM without touching lsass.exe
PoolPartyBof
A beacon object file implementation of PoolParty Process Injection Technique.
ProcessStomping
A variation of ProcessOverwriting to execute shellcode on an executable's section
SharpRODC
To audit the security of read-only domain controllers
SharpTokenFinder
C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
SourcePoint
SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
SpringBoot-Scan
针对SpringBoot的开源渗透框架,以及Spring相关高危漏洞利用工具
TrueSightKiller
CPP AV/EDR Killer
Unwinder
Another approach to thread stack spoofing.