1 Repo
Abusing signed deployment binaries and registry settings to execute arbitrary commands.
Distinct from Signed Binary Modules: None of the candidates cover the specific use of deployment-related binaries as execution proxies.
Explore 1 awesome GitHub repository matching security & cryptography · Deployment Proxy Execution. Refine with filters or upvote what's useful.
LOLBAS is a curated database and knowledge base of signed Windows binaries that can be misused to bypass security restrictions and execute unauthorized code. It serves as a technical registry that maps trusted system files to their functional capabilities and the offensive tactics they enable. The project distinguishes itself by providing a capability-driven indexing system and a tactics registry that relates legitimate binary functionality to known security evasion techniques. It includes an association layer that links specific system binaries to attack patterns and tactical objectives, pro
Lists signed deployment binaries that can be leveraged with registry configurations to run arbitrary commands.