Dump processes over WMI with MSFT_MTProcess
☆85Feb 13, 2026Updated 4 months ago
Alternatives and similar repositories for WMI_Proc_Dump
Users that are interested in WMI_Proc_Dump are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Python script to leverage MSFT_MTProcess WMI class☆40Sep 17, 2025Updated 8 months ago
- Awesome MalDev Links☆68Jun 8, 2026Updated last week
- Execute commands, in/exfiltrate files using your custom RPC Server☆70Jan 13, 2026Updated 5 months ago
- Random BOFs for LDAP tradecraft☆74Sep 9, 2025Updated 9 months ago
- A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.☆57Apr 14, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Cobalt Strike Aggressor Script for identifying security products on Windows hosts — six enumeration methods rated by noise level, from si…☆47Feb 6, 2026Updated 4 months ago
- ☆140Nov 17, 2025Updated 6 months ago
- Tool to enumerate privileged Scheduled Tasks on Remote Systems☆305Mar 29, 2026Updated 2 months ago
- Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…☆311Mar 28, 2026Updated 2 months ago
- ☆16Jan 9, 2025Updated last year
- A bunch of shenanigans using functions, VEH and more☆37Jun 8, 2025Updated last year
- ForsHops☆154Mar 25, 2025Updated last year
- Dump Kerberos tickets☆46Aug 4, 2025Updated 10 months ago
- Ludus role for deploying a Cobalt Strike Teamserver onto Linux servers☆19Mar 19, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Reaping treasures from strings in remote processes memory☆288Feb 8, 2025Updated last year
- ☆50Jun 4, 2025Updated last year
- ☆127Sep 1, 2024Updated last year
- Advanced Active Directory network topology analyzer with SMB validation, multiple authentication methods (password/NTLM/Kerberos), and co…☆670May 16, 2026Updated 3 weeks ago
- ☆16Dec 7, 2025Updated 6 months ago
- Proof of concept for Kerberos Armoring abuse.☆85Dec 12, 2025Updated 6 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆275Jul 1, 2025Updated 11 months ago
- ☆36Jan 23, 2025Updated last year
- Python based GUI for browsing LDAP☆181Dec 7, 2025Updated 6 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- NSecSoftBYOVD POC☆61Feb 12, 2026Updated 4 months ago
- Cobalt Strike Beacon Object File (BOF) that uses RegConnectRegistryA + RegOpenKeyExA API to dump registry hives on remote computer☆18Mar 4, 2023Updated 3 years ago
- An example reference design for a proposed BOF PE☆220Jan 23, 2026Updated 4 months ago
- An ICMP channel for Beacons, implemented using Cobalt Strike’s External C2 framework.☆121Oct 6, 2025Updated 8 months ago
- ☆100Sep 1, 2024Updated last year
- A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office3…☆173Jul 31, 2025Updated 10 months ago
- Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll☆154Apr 18, 2025Updated last year
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆80Dec 23, 2023Updated 2 years ago
- Advanced shellcode injector for images supports BMP, GIF, EXIF (JPEG), and LSB (PNG) techniques. Includes XOR encoding, offset indexing, …☆27Jun 11, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Cobalt Strike BOF to freeze EDR/AV processes and dump LSASS using WerFaultSecure.exe PPL bypass☆140Jan 29, 2026Updated 4 months ago
- Golang Automation Framework for Cobalt Strike using the Rest API☆60Apr 10, 2026Updated 2 months ago
- Threadless shellcode injection tool☆68Aug 5, 2024Updated last year
- Advanced post-exploitation framework designed for Red Team operations in Entra ID, Azure and Microsoft 365 environments.☆57Apr 1, 2026Updated 2 months ago
- A Beacon Object File (BOF) for Havoc/CS to Bypass PPL and Dump Lsass☆171Sep 22, 2025Updated 8 months ago
- Red Team Assessment Platform - reporting, visualizations, and analytics for cybersecurity red teams☆34Apr 13, 2026Updated 2 months ago
- Beacon Object File (BOF) for Windows Session Hijacking via IHxHelpPaneServer COM☆71Dec 25, 2025Updated 5 months ago