Skip to content
View netero1010's full-sized avatar

Block or report netero1010

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Popular repositories Loading

  1. EDRSilencer EDRSilencer Public

    A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.

    C 1.5k 189

  2. GhostTask GhostTask Public

    A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.

    C 475 59

  3. ScheduleRunner ScheduleRunner Public

    A C# tool with more flexibility to customize scheduled task for both persistence and lateral movement in red team operation

    C# 326 40

  4. RDPHijack-BOF RDPHijack-BOF Public

    Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.

    C 297 45

  5. ServiceMove-BOF ServiceMove-BOF Public

    New lateral movement technique by abusing Windows Perception Simulation Service to achieve DLL hijacking code execution.

    C 284 46

  6. TrustedPath-UACBypass-BOF TrustedPath-UACBypass-BOF Public

    Cobalt Strike beacon object file implementation for trusted path UAC bypass. The target executable will be called without involving "cmd.exe" by using DCOM object.

    C 119 38