AJMartel / IRTriageCMD

Related projects ⓘ

Alternatives and complementary repositories for IRTriageCMD

• ceramicskate0 / AddReferenceDotRedTeam
  A PoC to show how to add code to C# and dotNet and make it reusable for Red Team operations. Maybe one day it will be the largest collect…
  ☆17Updated 4 years ago
• RedyOpsResearchLabs / SEP-14.2-Arbitrary-Write
  CVE-2020-5837 exploit
  ☆41Updated 4 years ago
• sinmygit / RogueMMC
  Execute Shellcode And Other Goodies From MMC
  ☆12Updated 9 years ago
• perturbed-platypus / UEFIWriteCSharp
  ☆41Updated 5 years ago
• malcomvetter / WMIProcessWatcher
  An example pattern in C# for using WMI to monitor process creation and termination events.
  ☆50Updated 6 years ago
• cobbr / InsecurePowerShellHost
  InsecurePowerShellHost is a .NET Core host process for InsecurePowerShell, a version of PowerShell Core v6.0.0 with key security features…
  ☆30Updated 6 years ago
• rootm0s / UUB
  UIAccess UAC Bypass using token duplication and keyboard events
  ☆25Updated 5 years ago
• Dankirk / RegSLScan
  A tool for scanning registery key permissions. Find where non-admins can create symbolic links.
  ☆46Updated 5 years ago
• checkymander / TokenContextManipulation
  Code that can be used to create/steal/manipulate token contexts in a program. Can be implemented into other C# projects.
  ☆13Updated 5 years ago
• rvrsh3ll / UACSilentCleanup
  ☆14Updated 5 years ago
• gourk / FirePwd.Net
  Password reader for Mozilla Firefox and Thunderbird
  ☆23Updated 4 years ago
• paranoidninja / 0xdarkvortex-red-team-ttps-part-2
  Code for blog written at 0xdarkvortex.dev Red Team TTPs Part 2
  ☆17Updated 4 years ago
• whiteHat001 / MIcrosoft-Word-Use-After-Free
  ☆15Updated 4 years ago
• am0nsec / MCGC
  Minimalist Custom .NET Core Garbage Collector
  ☆21Updated 4 years ago
• secana / CertDump
  Dump certificates from PE files in different formats
  ☆35Updated 10 months ago
• sevagas / weaponize_process_injection_windows_SIGSEGv2_2019
  Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog
  ☆13Updated 4 years ago
• mgeeky / PEInfo
  Another Portable Executable files analysing stuff
  ☆18Updated 13 years ago
• djhohnstein / CSharpCreateThreadExample
  C# code to run PIC using CreateThread
  ☆16Updated 5 years ago
• kafkaesqu3 / subtee-gist-mirror
  few months old but better than nothing
  ☆58Updated 2 years ago
• ThunderGunExpress / OutlookToolbox_v2
  ☆34Updated 6 years ago
• hoangprod / COMHijacker
  Persistent through COM Hijacking
  ☆20Updated 5 years ago
• 3gstudent / Eventlogedit-evt--General
  Remove individual lines from Windows Event Viewer Log (EVT) files
  ☆44Updated 3 years ago
• WiredPulse / Invoke-GhostLog
  Removal of certain event logs within a Windows OS
  ☆7Updated 5 years ago
• topotam / SharpWeb
  .NET 2.0 CLR project to retrieve saved browser credentials from Google Chrome, Mozilla Firefox and Microsoft Internet Explorer/Edge.
  ☆20Updated 6 years ago
• DissectMalware / ClipboardWatcher
  Monitor the textual data pasted into Windows clipboard
  ☆28Updated 6 years ago
• EgeBalci / Injector
  Simple shellcode injector.
  ☆13Updated 5 years ago
• RedLectroid / OutlookSend
  A C# tool to send emails through Outlook from the command line or in memory
  ☆27Updated 4 years ago