Firewall_Walker_BOF
Firewall Exploit
An exploit technique allowing interaction with Windows software firewall via COM interfaces.
A BOF to interact with COM objects associated with the Windows software firewall.
100 stars
3 watching
14 forks
Language: C++
last commit: about 3 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
| espressocake/defender_exclusions-bof | Tools to determine Windows Defender exclusions | 241 |
 octoberfest7/cve-2023-36874_bof | An exploit tool for a Windows vulnerability allowing an attacker to run arbitrary code as SYSTEM on Windows 10 and Windows 11 | 202 |
| espressocake/process_protection_level_bof | A tool that helps operators determine the protection level of a process before attempting to access its memory | 51 |
| espressocake/ppldump_bof | A tool for dumping the memory contents of a protected process on Windows | 136 |
| octoberfest7/killdefender_bof | A tool that allows an attacker to elevate privileges and gain control over the Windows Defender service | 62 |
 rsmudge/zerologon-bof | An implementation of a Zero Logon protocol Bounce Of Flood (ZoBoF) vulnerability exploitation technique | 157 |
 0x3rhy/adduser-bof | A Cobalt Strike BOF that exploits a vulnerability to add an admin user | 70 |
| rsmudge/cve-2020-0796-bof | Exploits a vulnerability in SMBv3 compression to achieve privilege escalation and process manipulation. | 68 |
 mr-un1k0d3r/elevate-system-trusted-bof | Tool to bypass Windows security restrictions and gain elevated privileges | 148 |
| espressocake/toggle_token_privileges_bof | A tool to add or remove specific privilege rights from the token of the current process | 52 |
 outflanknl/c2-tool-collection | Tools for exploiting vulnerabilities in Windows systems and gathering information about networked computers. | 1,155 |
| espressocake/self_deletion_bof | BOF implementation of a research concept allowing for controlled deletion of processes | 171 |
| espressocake/dll_imports_bof | An enumeration tool to inspect PE files and extract information about loaded DLLs and their imported functions | 83 |
 pyroxenites/boftools | A collection of tools and techniques for exploiting vulnerabilities in software applications. | 17 |
 mainframed/tshocker | An FTP-based tool to execute malicious commands on a mainframe system using a CATSO/JCL wrapper | 24 |