KDStab

Process manipulator

A tool used to bypass Windows Defender by manipulating process integrity and privileges

BOF combination of KillDefender and Backstab

GitHub

156 stars
5 watching
37 forks
Language: C
last commit: over 1 year ago

Related projects:

Repository Description Stars
octoberfest7/killdefender_bof A tool that allows an attacker to elevate privileges and gain control over the Windows Defender service 62
s1ckb0y1337/tokenplayer A tool designed to manipulate and abuse Windows access tokens for exploitation and learning purposes. 268
vi/timeskew A utility to manipulate time reporting in Linux processes for testing and development purposes 44
redmed-x/operatorskit A collection of tools for interacting with and manipulating Windows systems, primarily designed for use in penetration testing and security research. 551
trustedsec/cs-remote-ops-bof Provides tools and primitives for interacting with Microsoft Windows systems remotely. 886
redsection/offensiveph A tool that utilizes an old driver to bypass user-mode access controls and inject malicious code into processes 329
sindresorhus/ansi-escapes A collection of functions for manipulating the terminal screen in various ways 498
federicodotta/brida A tool that bridges Burp Suite and Frida to manipulate mobile application behavior by dynamically modifying their internal logic 1,657
eladshamir/whisker A tool for manipulating Active Directory user and computer accounts by adding shadow credentials. 824
octoberfest7/eventvieweruac_bof A tool that bypasses UAC restrictions on Windows by deserializing and executing malicious code in Event Viewer. 129
octoberfest7/dropspawn_bof A CobaltStrike payload that uses DLL hijacking to spawn additional Beacons on Windows systems 219
ajpc500/bofs A collection of tools and utilities to manipulate system calls, memory, and processes for exploitation and reverse engineering purposes. 554
octoberfest7/cohab_processes Helps identify foreign processes on a host machine by highlighting unknown processes 81
rasta-mouse/ppenum A tool to determine the protection level of a process using a simple Binary Object Formatter (BOF) approach. 111
wjakob/filesystem A lightweight class for manipulating paths on Linux/Windows/Mac OS 245