0xthirteen / reg_snake
Python tool to interact with WMI StdRegProv
☆55Updated 4 months ago
Alternatives and similar repositories for reg_snake:
Users that are interested in reg_snake are comparing it to the libraries listed below
- Modified versions of the Cobalt Strike Process Injection Kit☆93Updated last year
- ☆95Updated 6 months ago
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆118Updated 5 months ago
- Tool to aid in dumping LSASS process remotely☆38Updated 8 months ago
- ☆54Updated last month
- ☆86Updated 10 months ago
- .NET Post-Exploitation Utility for Abusing Explicit Certificate Mappings in ADCS☆117Updated last month
- BOF to decrypt Signal Desktop chat logs☆62Updated last month
- C++ Staged Shellcode Loader with Evasion capabilities.☆82Updated 5 months ago
- ☆81Updated 10 months ago
- TokenCert☆94Updated 4 months ago
- SAM Dumping in C#☆44Updated 2 months ago
- ☆78Updated 8 months ago
- Lateral Movement via the .NET Profiler☆80Updated 4 months ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆69Updated 10 months ago
- A BOF to enumerate system process, their protection levels, and more.☆116Updated 4 months ago
- An impacket-lite cli tool that combines many useful impacket functions using a single session.☆47Updated last month
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints☆81Updated 2 months ago
- ☆54Updated 5 months ago
- Execute commands in other Sessions☆85Updated 7 months ago
- ☆52Updated 3 months ago
- ☆151Updated this week
- ☆109Updated 4 months ago
- lsassdump via RtlCreateProcessReflection and NanoDump☆80Updated 5 months ago
- Enumerate information from NTLM authentication enabled web endpoints 🔎☆35Updated last year
- a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab☆62Updated 3 months ago
- A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.☆72Updated 3 weeks ago
- Secretsdump C# version only supporting local (live) operation☆49Updated last year
- A simple C++ Windows tool to get information about processes exposing named pipes.☆36Updated 3 weeks ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆110Updated 11 months ago