001SPARTaN / FaceDancer
Playing around with token manipulation in C#.
☆28Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for FaceDancer
- A repo to hold any bypasses I work on/study/whatever☆18Updated 3 years ago
- C# DCOM Execution☆18Updated 5 years ago
- Code that can be used to create/steal/manipulate token contexts in a program. Can be implemented into other C# projects.☆13Updated 5 years ago
- C# Implementation of Get-VaultCredential☆13Updated 6 years ago
- My musings with C#☆28Updated last year
- Leak windows system info through a docx file☆12Updated 4 years ago
- ☆36Updated 5 years ago
- ☆54Updated 6 years ago
- Bash one-liner that will parse harmj0y's SharpRoast or Rebeus kerberoast into hashcat crack-able format.☆32Updated 5 years ago
- CobaltStrike Aggressor Script to utilise FuzzySec's Windows Notification Framework Research to Spawn a Shell under Explorer.exe☆15Updated 5 years ago
- This tool is designed to simplify and automate the extraction and organization of useful data from Cobalt Strike logs.☆17Updated 5 years ago
- interesting analysis☆16Updated 6 years ago
- A script that can be deployed to Azure App for C2 / Proxy / Redirector☆35Updated 5 years ago
- ☆14Updated 4 years ago
- Helper script for mangling CS payloads☆52Updated 5 years ago
- ☆14Updated 5 years ago
- Miscellaneous PowerShell scripts for red team activities☆16Updated 2 weeks ago
- Microsoft Applocker evasion tool☆38Updated 4 years ago
- Miscellaneous C-Sharp projects for red team activities☆24Updated 2 years ago
- Convert Empire profiles to Apache mod_rewrite scripts☆27Updated 5 years ago
- Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials☆20Updated 3 years ago
- .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems☆32Updated 4 years ago
- Bypass AMSI and Executing PowerShell scripts from C# - using CyberArk's method to bypass AMSI☆29Updated 4 years ago