0xthirteen / AssemblyHunterLinks
Find .net assemblies locally
☆114Updated 2 years ago
Alternatives and similar repositories for AssemblyHunter
Users that are interested in AssemblyHunter are comparing it to the libraries listed below
Sorting:
- Source generator to add D/Invoke and indirect syscall methods to a C# project.☆182Updated last year
- ☆88Updated 2 years ago
- Simple BOF to read the protection level of a process☆115Updated 2 years ago
- AzureAD beacon object files☆120Updated 6 months ago
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆97Updated 2 years ago
- ☆110Updated 7 months ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆137Updated last year
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆113Updated last year
- ForsHops☆139Updated 2 months ago
- Slide decks and/or materials from conference presentations☆56Updated 2 years ago
- ☆122Updated last year
- A Python POC for CRED1 over SOCKS5☆149Updated 8 months ago
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints☆90Updated 5 months ago
- Your syscall factory☆123Updated this week
- Patch AMSI and ETW☆240Updated last year
- Lateral Movement via the .NET Profiler☆82Updated 7 months ago
- ☆132Updated 4 months ago
- ☆113Updated 5 months ago
- Run Cobalt Strike BOFs in Brute Ratel C4!☆67Updated 2 months ago
- A C# tool to output crackable DPAPI hashes from user MasterKeys☆134Updated 9 months ago
- Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies☆120Updated last year
- ☆186Updated last year
- ☆108Updated 3 months ago
- I have documented all of the AMSI patches that I learned till now☆72Updated 2 months ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆93Updated last month
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆188Updated 6 months ago
- Enumerate Domain Users Without Authentication☆36Updated 2 months ago
- WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"☆118Updated 11 months ago
- Find DLLs with RWX section☆81Updated last year
- .NET Post-Exploitation Utility for Abusing Explicit Certificate Mappings in ADCS☆147Updated 4 months ago