0xe7 / WonkaVisionLinks
☆84Updated 2 years ago
Alternatives and similar repositories for WonkaVision
Users that are interested in WonkaVision are comparing it to the libraries listed below
Sorting:
- A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools☆88Updated 2 years ago
- Default Detections for EDR☆96Updated last year
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆57Updated 2 years ago
- Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later☆91Updated 2 years ago
- Abuse Azure API permissions for red teaming☆67Updated 2 years ago
- AAD related enumeration in Nim☆131Updated last year
- A module for CME that spiders across a domain.☆35Updated 3 years ago
- Collection of tools to use with Azure Applications☆109Updated last year
- ☆102Updated 2 years ago
- Microsoft Graph API post-exploitation toolkit☆94Updated last year
- Python tool to find vulnerable AD object and generating csv report☆26Updated 3 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆95Updated last week
- ☆44Updated last year
- Info related to the Outflank training: Microsoft Office Offensive Tradecraft☆52Updated last year
- ☆72Updated last month
- Simple EDR that injects a DLL into a process to place a hook on specific Windows API☆94Updated last year
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- Tool to perform lateral movement between AAD joined devices☆64Updated 3 years ago
- Some scripts to support with importing large datasets into BloodHound☆80Updated last year
- PowerSploit - A PowerShell Post-Exploitation Framework☆42Updated 4 months ago
- ☆69Updated last year
- create a "simulated internet" cyber range environment☆17Updated 2 months ago
- Small utility to chunk up a large BloodHound JSON file into smaller files for importing.☆94Updated 2 years ago
- Living Off the Foreign Land setup scripts☆70Updated 5 months ago
- A small script that automates Entra ID persistence with Windows Hello For Business key☆60Updated 5 months ago
- Extract payload URLs from Follina (CVE-2022-30190) docx and rtf files☆31Updated 3 years ago
- Simple PoC from Malicious Payload Injection from Windows Event Log Entry☆28Updated 2 years ago
- ☆39Updated last year
- Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.☆120Updated 3 years ago
- ☆103Updated last month