Adepts-Of-0xCC / MiniDumpWriteDumpPoCLinks
MiniDumpWriteDump behavior modification hook
☆50Updated 4 years ago
Alternatives and similar repositories for MiniDumpWriteDumpPoC
Users that are interested in MiniDumpWriteDumpPoC are comparing it to the libraries listed below
Sorting:
- Implementation of b4rtiks's SharpMiniDump using NTFS transactions to avoid writting the minidump to disk and exfiltrating it via HTTPS us…☆71Updated 4 years ago
- ☆94Updated 3 years ago
- ☆55Updated 3 years ago
- C# port of the Get-AppLockerPolicy PS cmdlet☆100Updated 2 years ago
- credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege☆123Updated 4 years ago
- AMSI Bypass Via the Heap☆107Updated 4 years ago
- aggressor and pycobalt scripts.☆18Updated 4 years ago
- A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …☆85Updated 5 years ago
- A BOF to interact with COM objects associated with the Windows software firewall.☆105Updated 3 years ago
- Outlook persistence using VSTO add-ins☆87Updated 4 years ago
- Collection of Beacon Object Files (BOFs) for shells and lols☆120Updated 3 years ago
- ☆71Updated 3 years ago
- MSBuild without MSbuild.exe☆132Updated 4 years ago
- Load C# Code straight to memory☆55Updated 5 years ago
- ☆26Updated 4 years ago
- Load .net assemblies from memory while having them appear to be loaded from an on-disk location.☆169Updated 4 years ago
- C++ implant that interfaces with a SK8PARK server☆49Updated 4 years ago
- Tool for interacting with outlook interop during red team engagements☆144Updated 4 years ago
- A simplified version of DotNetToJScript to create a JScript file which loads a .NET v2 assembly from memory.☆47Updated 4 years ago
- An injector that aims to be stealthy by using non suspicious API calls. Inspired by (https://github.com/FuzzySecurity/Sharp-Suite/tree/ma…☆24Updated 5 years ago
- Companion PoC for the "Adventures in Dynamic Evasion" blog post☆121Updated 4 years ago
- D/Invoke port of UrbanBishop☆108Updated 5 years ago
- A BOF to parse the imports of a provided PE-file, optionally extracting symbols on a per-dll basis.☆85Updated 3 years ago
- ☆59Updated 3 years ago
- ☆101Updated 3 years ago
- Remove API hooks from a Beacon process.☆57Updated 3 years ago
- Source code for HppDLL - local password dumping using MsvpPasswordValidate hooks☆4Updated 4 years ago
- IOXIDResolver from AirBus Security/PingCastle☆51Updated 4 years ago
- ☆52Updated 3 years ago
- ☆94Updated 3 years ago