Toggle_Token_Privileges_BOF

Privilege toggler

A tool to add or remove specific privilege rights from the token of the current process

Syscall BOF to arbitrarily add/detract process token privilege rights.

GitHub

52 stars
4 watching
19 forks
Language: C
last commit: 5 months ago

Related projects:

Repository Description Stars
espressocake/process_protection_level_bof A tool that helps operators determine the protection level of a process before attempting to access its memory 51
espressocake/defender_exclusions-bof Tools to determine Windows Defender exclusions 241
mr-un1k0d3r/elevate-system-trusted-bof Tool to bypass Windows security restrictions and gain elevated privileges 148
octoberfest7/killdefender_bof A tool that allows an attacker to elevate privileges and gain control over the Windows Defender service 62
espressocake/firewall_walker_bof An exploit technique allowing interaction with Windows software firewall via COM interfaces. 100
espressocake/self_deletion_bof BOF implementation of a research concept allowing for controlled deletion of processes 171
ccob/sweetpotato Provides tools and techniques for exploiting Windows privilege escalation vulnerabilities from service accounts to SYSTEM. 1,638
espressocake/dll-hijack-search-order-bof A tool to enumerate the search order of DLL resolution and potentially gain information about a file's mutability. 141
espressocake/ppldump_bof A tool for dumping the memory contents of a protected process on Windows 136
atalii/adage A simple and secure alternative to sudo and doas for running commands with elevated privileges. 6
sorentwo/flippant A library for controlling feature usage in Elixir applications by evaluating user groups and rules 107
rsmudge/elevatekit A PowerShell module for demonstrating third-party privilege escalation attacks with Cobalt Strike's Beacon payload 895
securingsincity/molasses A library that manages feature toggles in Elixir applications using Redis or SQL as backing services. 77
espressocake/needle_sift_bof A tool for searching for specific strings within files using a needle-sift algorithm 30
octoberfest7/cve-2023-36874_bof An exploit tool for a Windows vulnerability allowing an attacker to run arbitrary code as SYSTEM on Windows 10 and Windows 11 202