lab52io

Lab52 is the threat intelligence division of S2 Grupo, an international cybersecurity company that offers its services around the world.

S2 GrupoSpain

Pinned Repositories

Lab52
The threat intelligence division of S2 Grupo
0 1 00
LeakedHandlesFinder
Leaked Windows processes handles identification tool
Language:C++272 7 242
SandboxIt
Language:C++7 1 05
StealAllTokens
This PoC uses two diferent technics for stealing the primary token from all running processes, showing that is possible to impersonate and use whatever token present at any process
Language:C++55 4 013
StopDefender
Stop Windows Defender programmatically
Language:C++957 13 6149
Syspce
System Processes Correlation Engine
Language:Python19 4 145

lab52io's Repositories

lab52io/StopDefender
Stop Windows Defender programmatically
Language:C++957 13 6149
lab52io/LeakedHandlesFinder
Leaked Windows processes handles identification tool
Language:C++272 7 242
lab52io/StealAllTokens
This PoC uses two diferent technics for stealing the primary token from all running processes, showing that is possible to impersonate and use whatever token present at any process
Language:C++55 4 013
lab52io/Syspce
System Processes Correlation Engine
Language:Python19 4 145
lab52io/SandboxIt
Language:C++7 1 05
lab52io/Lab52
The threat intelligence division of S2 Grupo
0 1 00