0xbadjuju / WheresMyImplant
A Bring Your Own Land Toolkit that Doubles as a WMI Provider
☆285Updated 6 years ago
Alternatives and similar repositories for WheresMyImplant:
Users that are interested in WheresMyImplant are comparing it to the libraries listed below
- DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.☆254Updated 6 years ago
- Assorted scripts and one off things☆264Updated 6 months ago
- SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…☆291Updated 4 years ago
- ☆229Updated 6 years ago
- POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's s…☆103Updated 7 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆256Updated 6 years ago
- Lateral Movement technique using DCOM and HTA☆231Updated 2 years ago
- PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)☆322Updated 5 years ago
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆321Updated 7 years ago
- MSBuildShell, a Powershell Host running within MSBuild.exe☆284Updated 5 years ago
- Forward local or remote tcp ports through SMB pipes.☆294Updated 3 years ago
- A proof of concept for dynamically loading .net assemblies at runtime with only a minimal convention pre-knowledge☆162Updated 6 years ago
- Collection of CSharp Assemblies focused on Post-Exploitation Capabilities☆224Updated 5 years ago
- ☆272Updated 2 years ago
- Provides In-memory compilation and reflective loading of C# apps for AV evasion.☆368Updated last year
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆378Updated 5 years ago
- CScriptShell, a Powershell Host running within cscript.exe☆160Updated 7 years ago
- Parse PowerShell and Security event logs for sensitive information.☆124Updated 5 years ago
- Quick Malicious ClickOnceGenerator for Red Team☆251Updated 4 years ago
- ☆214Updated 6 years ago
- ☆164Updated 9 years ago
- Constrained Language Mode + AMSI bypass all in one☆156Updated 5 years ago
- BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET☆145Updated 5 years ago
- In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)☆163Updated 7 years ago
- The PowerThIEf, an Internet Explorer Post Exploitation library☆131Updated this week
- ObfuscatedEmpire is a fork of Empire with Invoke-Obfuscation integrated directly into it's functionality.☆227Updated 7 years ago
- Elite is the client-side component of the Covenant project. Covenant is a .NET command and control framework that aims to highlight the a…☆120Updated last year
- Misc. PowerShell scripts☆115Updated 8 years ago
- The full story of the CLR implementation of Meterpreter☆152Updated 4 years ago
- How To Execute Shellcode via HTA☆137Updated 7 years ago