1 repositorio
Abusing shell extension functions and protocol handlers to launch unauthorized applications.
Distinct from Shell-Bypass Execution: None of the candidates cover the specific abuse of OS shell extensions and protocol handlers for payload execution.
Explore 1 awesome GitHub repository matching security & cryptography · Shell Extension Exploitation. Refine with filters or upvote what's useful.
LOLBAS is a curated database and knowledge base of signed Windows binaries that can be misused to bypass security restrictions and execute unauthorized code. It serves as a technical registry that maps trusted system files to their functional capabilities and the offensive tactics they enable. The project distinguishes itself by providing a capability-driven indexing system and a tactics registry that relates legitimate binary functionality to known security evasion techniques. It includes an association layer that links specific system binaries to attack patterns and tactical objectives, pro
Lists binaries that invoke shell extension functions to launch HTML applications or executables.