0x00-0x00 / NamedPipes
Bind shell that uses Named Pipes as transport and execute PowerShell code through Runspaces.
☆16Updated 5 years ago
Related projects: ⓘ
- Code for blog written at 0xdarkvortex.dev Red Team TTPs Part 2☆17Updated 3 years ago
- ☆11Updated 4 years ago
- ☆32Updated this week
- C2 and Post Exploitation Code☆34Updated 2 weeks ago
- C# code to run PIC using CreateThread☆16Updated 5 years ago
- module for certexfil☆15Updated 2 years ago
- ☆17Updated this week
- Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog☆13Updated 4 years ago
- Advanced scanner for CVE-2020-0796 - SMBv3 RCE☆14Updated last year
- ☆10Updated this week
- ☆21Updated this week
- Spin up a reverse proxy quickly on Heroku☆13Updated 3 years ago
- Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials☆20Updated 3 years ago
- ☆14Updated 4 years ago
- Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.☆15Updated 5 years ago
- ☆25Updated this week
- Windows privilege escalation Mafia is a framework provides all resources needed for privilege escalation beginners☆12Updated 2 years ago
- XOR crypt/decrypt using C#☆12Updated 3 years ago
- Execute shellcode with syscalls from C# .dll☆12Updated 4 years ago
- ☆12Updated this week
- Ransoblin (Ransomware Bokoblin)☆17Updated 3 years ago
- Encrypted Shellcode Loader Generator☆22Updated 5 years ago
- Create COM Objects backed by Scripts, not DLLs☆9Updated 7 years ago
- ☆15Updated this week
- ☆16Updated 4 years ago
- Code that can be used to create/steal/manipulate token contexts in a program. Can be implemented into other C# projects.☆14Updated 5 years ago
- A simple injector that uses LoadLibraryA☆15Updated 4 years ago
- Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.☆13Updated 6 years ago
- DLL hijacking vulnerability scanner and PE infector tool☆16Updated 7 years ago
- ☆27Updated this week