Skip to content
@SafeBreach-Labs

SafeBreach Labs

SafeBreach Labs

Popular repositories Loading

  1. PoolParty PoolParty Public

    A set of fully-undetectable process injection techniques abusing Windows Thread Pools

    C++ 1.3k 172

  2. pinjectra pinjectra Public

    Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)

    C++ 824 158

  3. WindowsDowndate WindowsDowndate Public

    A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities

    Python 701 91

  4. CVE-2024-49113 CVE-2024-49113 Public

    LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113

    Python 516 118

  5. SirepRAT SirepRAT Public

    Remote Command Execution as SYSTEM on Windows IoT Core (releases available for Python2.7 & Python3)

    Python 386 91

  6. EDRaser EDRaser Public

    EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offers two modes of operation: automated and manual.

    Python 374 51

Repositories

Showing 10 of 36 repositories
  • EventLogin-CVE-2025-29969 Public

    Exploitation of CVE-2025-29969

    SafeBreach-Labs/EventLogin-CVE-2025-29969’s past year of commit activity
    Python 38 8 0 0 Updated Feb 20, 2026
  • Win-DoS Public

    A set of tools and exploits to cause DoS for remote Windows Server & Windows 11 machines

    SafeBreach-Labs/Win-DoS’s past year of commit activity
    Python 32 BSD-3-Clause 2 0 0 Updated Feb 9, 2026
  • CVE-2026-24061 Public

    Exploitation of CVE-2026-24061

    SafeBreach-Labs/CVE-2026-24061’s past year of commit activity
    Python 198 BSD-3-Clause 44 0 0 Updated Jan 22, 2026
  • RPC-Racer Public

    Toolset to manipulate RPC clients by finding delayed services and masquerading as them

    SafeBreach-Labs/RPC-Racer’s past year of commit activity
    C++ 108 BSD-3-Clause 12 1 0 Updated Aug 18, 2025
  • QuickShell Public

    A library and a set of tools for exploiting and communicating with Google's Quick Share devices.

    SafeBreach-Labs/QuickShell’s past year of commit activity
    C++ 49 4 0 0 Updated Apr 2, 2025
  • CVE-2024-49113 Public

    LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113

    SafeBreach-Labs/CVE-2024-49113’s past year of commit activity
    Python 516 BSD-3-Clause 118 6 2 Updated Jan 2, 2025
  • WindowsDowndate Public

    A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities

    SafeBreach-Labs/WindowsDowndate’s past year of commit activity
    Python 701 BSD-3-Clause 91 5 0 Updated Oct 26, 2024
  • DoubleDrive Public

    A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files

    SafeBreach-Labs/DoubleDrive’s past year of commit activity
    Python 127 BSD-3-Clause 16 0 0 Updated May 28, 2024
  • CortexVortex Public
    SafeBreach-Labs/CortexVortex’s past year of commit activity
    Python 81 9 0 0 Updated Apr 23, 2024
  • MagicDot Public

    A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue

    SafeBreach-Labs/MagicDot’s past year of commit activity
    Python 108 BSD-3-Clause 19 0 0 Updated Apr 18, 2024
View all repositories

Top languages

Loading…

Most used topics

Loading…