Skip to content
@SafeBreach-Labs

SafeBreach Labs

SafeBreach Labs

Popular repositories Loading

  1. PoolParty PoolParty Public

    A set of fully-undetectable process injection techniques abusing Windows Thread Pools

    C++ 1.1k 143

  2. pinjectra pinjectra Public

    Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)

    C++ 809 157

  3. WindowsDowndate WindowsDowndate Public

    A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities

    Python 662 87

  4. CVE-2024-49113 CVE-2024-49113 Public

    LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113

    Python 488 116

  5. SirepRAT SirepRAT Public

    Remote Command Execution as SYSTEM on Windows IoT Core (releases available for Python2.7 & Python3)

    Python 380 89

  6. EDRaser EDRaser Public

    EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offers two modes of operation: automated and manual.

    Python 363 49

Repositories

Showing 10 of 32 repositories
  • QuickShell Public

    A library and a set of tools for exploiting and communicating with Google's Quick Share devices.

    C++ 37 2 0 0 Updated Apr 2, 2025
  • CVE-2024-49113 Public

    LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113

    Python 488 BSD-3-Clause 116 6 3 Updated Jan 2, 2025
  • WindowsDowndate Public

    A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities

    Python 662 BSD-3-Clause 87 5 0 Updated Oct 26, 2024
  • DoubleDrive Public

    A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files

    Python 124 BSD-3-Clause 14 0 0 Updated May 28, 2024
  • CortexVortex Public
    Python 77 9 0 0 Updated Apr 23, 2024
  • MagicDot Public

    A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue

    Python 98 BSD-3-Clause 16 0 0 Updated Apr 18, 2024
  • EDRaser Public

    EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offers two modes of operation: automated and manual.

    Python 363 BSD-3-Clause 49 0 0 Updated Apr 6, 2024
  • PoolParty Public

    A set of fully-undetectable process injection techniques abusing Windows Thread Pools

    C++ 1,088 BSD-3-Clause 143 1 0 Updated Dec 11, 2023
  • CloudMiner Public

    Execute code using Azure Automation service without getting charged

    Python 144 BSD-3-Clause 19 1 0 Updated Nov 8, 2023
  • wd-pretender Public
    Python 130 BSD-3-Clause 11 1 0 Updated Aug 9, 2023
View all repositories