0x09AL / RdpThief

Related projects: ⓘ

• Mr-Un1k0d3r / SCShell
  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
  ☆1,385Updated last year
• outflanknl / Dumpert
  LSASS memory dumper using direct system calls and API unhooking.
  ☆1,469Updated 3 years ago
• breenmachine / RottenPotatoNG
  New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.
  ☆893Updated 6 years ago
• phra / PEzor
  Open-Source Shellcode & PE Packer
  ☆1,812Updated 7 months ago
• mandiant / SharPersist
  ☆1,378Updated last year
• GhostPack / SharpDPAPI
  SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.
  ☆1,144Updated 2 months ago
• Kevin-Robertson / InveighZero
  .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers
  ☆787Updated 2 years ago
• rasta-mouse / TikiTorch
  Process Injection
  ☆750Updated 2 years ago
• 0xbadjuju / Tokenvator
  A tool to elevate privilege with Windows Tokens
  ☆1,016Updated 11 months ago
• b4rtik / SharpKatz
  Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands
  ☆960Updated 2 years ago
• FuzzySecurity / Sharp-Suite
  Also known by Microsoft as Knifecoat
  ☆1,103Updated last year
• GhostPack / SafetyKatz
  SafetyKatz is a combination of slightly modified version of @gentilkiwi's Mimikatz project and @subtee's .NET PE Loader
  ☆1,213Updated 4 years ago
• harleyQu1nn / AggressorScripts
  Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources
  ☆1,479Updated last year
• med0x2e / GadgetToJScript
  A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …
  ☆852Updated 3 years ago
• Yaxser / Backstab
  A tool to kill antimalware protected processes
  ☆1,370Updated 3 years ago
• CCob / SharpBlock
  A method of bypassing EDR's active projection DLL's by preventing entry point exection
  ☆1,094Updated 3 years ago
• CCob / SweetPotato
  Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
  ☆1,564Updated 2 weeks ago
• hlldz / Phant0m
  Windows Event Log Killer
  ☆1,742Updated 11 months ago
• 3xpl01tc0d3r / ProcessInjection
  This program is designed to demonstrate various process injection techniques
  ☆1,056Updated last year
• mgeeky / cobalt-arsenal
  My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
  ☆1,029Updated last year
• tyranid / DotNetToJScript
  A tool to create a JScript file which loads a .NET v2 assembly from memory.
  ☆1,230Updated 3 years ago
• 0x09AL / IIS-Raid
  A native backdoor module for Microsoft IIS (Internet Information Services)
  ☆530Updated 4 years ago
• Flangvik / BetterSafetyKatz
  Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime pat…
  ☆790Updated 3 years ago
• bats3c / darkarmour
  Windows AV Evasion
  ☆729Updated 4 years ago
• antonioCoco / RoguePotato
  Another Windows Local Privilege Escalation from Service Account to System
  ☆1,028Updated 3 years ago
• RythmStick / AMSITrigger
  The Hunt for Malicious Strings
  ☆1,048Updated 2 years ago
• jthuraisamy / SysWhispers
  AV/EDR evasion via direct system calls.
  ☆1,776Updated last year
• mdsecactivebreach / CACTUSTORCH
  CACTUSTORCH: Payload Generation for Adversary Simulations
  ☆994Updated 6 years ago
• bitsadmin / nopowershell
  PowerShell rebuilt in C# for Red Teaming purposes
  ☆959Updated 10 months ago
• Hackplayers / Salsa-tools
  Salsa Tools - ShellReverse TCP/UDP/ICMP/DNS/SSL/BINDTCP/Shellcode/SILENTTRINITY and AV bypass, AMSI patched
  ☆575Updated 4 years ago