Skip to content
@SafeBreach-Labs

SafeBreach Labs

SafeBreach Labs

Popular repositories Loading

  1. PoolParty PoolParty Public

    A set of fully-undetectable process injection techniques abusing Windows Thread Pools

    C++ 1.2k 167

  2. pinjectra pinjectra Public

    Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)

    C++ 822 158

  3. WindowsDowndate WindowsDowndate Public

    A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities

    Python 693 93

  4. CVE-2024-49113 CVE-2024-49113 Public

    LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113

    Python 509 117

  5. SirepRAT SirepRAT Public

    Remote Command Execution as SYSTEM on Windows IoT Core (releases available for Python2.7 & Python3)

    Python 384 92

  6. EDRaser EDRaser Public

    EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offers two modes of operation: automated and manual.

    Python 371 52

Repositories

Showing 10 of 34 repositories
  • Win-DoS Public

    A set of tools and exploits to cause DoS for remote Windows Server & Windows 11 machines

    SafeBreach-Labs/Win-DoS’s past year of commit activity
    Python 30 3 0 0 Updated Dec 11, 2025
  • RPC-Racer Public

    Toolset to manipulate RPC clients by finding delayed services and masquerading as them

    SafeBreach-Labs/RPC-Racer’s past year of commit activity
    C++ 106 BSD-3-Clause 13 1 0 Updated Aug 18, 2025
  • QuickShell Public

    A library and a set of tools for exploiting and communicating with Google's Quick Share devices.

    SafeBreach-Labs/QuickShell’s past year of commit activity
    C++ 47 4 0 0 Updated Apr 2, 2025
  • CVE-2024-49113 Public

    LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113

    SafeBreach-Labs/CVE-2024-49113’s past year of commit activity
    Python 509 BSD-3-Clause 117 6 2 Updated Jan 2, 2025
  • WindowsDowndate Public

    A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities

    SafeBreach-Labs/WindowsDowndate’s past year of commit activity
    Python 693 BSD-3-Clause 93 5 0 Updated Oct 26, 2024
  • DoubleDrive Public

    A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files

    SafeBreach-Labs/DoubleDrive’s past year of commit activity
    Python 127 BSD-3-Clause 16 0 0 Updated May 28, 2024
  • CortexVortex Public
    SafeBreach-Labs/CortexVortex’s past year of commit activity
    Python 80 9 0 0 Updated Apr 23, 2024
  • MagicDot Public

    A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue

    SafeBreach-Labs/MagicDot’s past year of commit activity
    Python 106 BSD-3-Clause 19 0 0 Updated Apr 18, 2024
  • EDRaser Public

    EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offers two modes of operation: automated and manual.

    SafeBreach-Labs/EDRaser’s past year of commit activity
    Python 371 BSD-3-Clause 52 0 0 Updated Apr 6, 2024
  • PoolParty Public

    A set of fully-undetectable process injection techniques abusing Windows Thread Pools

    SafeBreach-Labs/PoolParty’s past year of commit activity
    C++ 1,226 BSD-3-Clause 167 1 1 Updated Dec 11, 2023
View all repositories

Top languages

Loading…

Most used topics

Loading…