0xbadjuju / WheresMyImplantLinks
A Bring Your Own Land Toolkit that Doubles as a WMI Provider
☆286Updated 6 years ago
Alternatives and similar repositories for WheresMyImplant
Users that are interested in WheresMyImplant are comparing it to the libraries listed below
Sorting:
- DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.☆252Updated 6 years ago
- Assorted scripts and one off things☆269Updated 9 months ago
- POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's s…☆104Updated 7 years ago
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆320Updated 8 years ago
- Provides In-memory compilation and reflective loading of C# apps for AV evasion.☆370Updated last year
- ☆229Updated 7 years ago
- SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…☆292Updated 4 years ago
- Lateral Movement technique using DCOM and HTA☆233Updated 2 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆258Updated 6 years ago
- A proof of concept for dynamically loading .net assemblies at runtime with only a minimal convention pre-knowledge☆162Updated 6 years ago
- Forward local or remote tcp ports through SMB pipes.☆296Updated 4 years ago
- PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)☆325Updated 6 years ago
- ☆272Updated 2 years ago
- A list of ways to execute code on Windows using legitimate Windows tools☆307Updated 6 years ago
- In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)☆167Updated 7 years ago
- Parse PowerShell and Security event logs for sensitive information.☆126Updated 6 years ago
- Collection of CSharp Assemblies focused on Post-Exploitation Capabilities☆229Updated 6 years ago
- BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET☆146Updated 5 years ago
- ObfuscatedEmpire is a fork of Empire with Invoke-Obfuscation integrated directly into it's functionality.☆227Updated 7 years ago
- MSBuildShell, a Powershell Host running within MSBuild.exe☆287Updated 5 years ago
- Liniaal - A communication extension to Ruler☆97Updated 6 years ago
- A C# implementation of PrivExchange by @_dirkjan.☆156Updated 6 years ago
- PowerDNS: Powershell DNS Delivery☆212Updated 6 years ago
- PSAmsi is a tool for auditing and defeating AMSI signatures.☆390Updated 7 years ago
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆379Updated 5 years ago
- CScriptShell, a Powershell Host running within cscript.exe☆160Updated 8 years ago
- Constrained Language Mode + AMSI bypass all in one☆157Updated 5 years ago
- Quick Malicious ClickOnceGenerator for Red Team☆249Updated 4 years ago
- ☆164Updated 9 years ago
- Lazykatz is an automation developed to extract credentials from remote targets protected with AV and/or application whitelisting software…☆197Updated 7 years ago