Allevon412 / TeamsImplant
☆208Updated 3 years ago
Alternatives and similar repositories for TeamsImplant:
Users that are interested in TeamsImplant are comparing it to the libraries listed below
- Koppeling x Metatwin x LazySign☆210Updated 3 years ago
- Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…☆241Updated 3 years ago
- ☆188Updated 2 years ago
- A quick handy script to harvest credentials off of a user during a Red Team and get execution of a file from the user☆257Updated 3 years ago
- Modular C# framework to exfiltrate loot over secure and trusted channels.☆126Updated 3 years ago
- Load any Beacon Object File using Powershell!☆250Updated 3 years ago
- Weaponising C# - Fundamentals Training Content☆70Updated 3 years ago
- ☆246Updated last year
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆257Updated 2 years ago
- Simple EDR implementation to demonstrate bypass☆172Updated 4 years ago
- Fully modular persistence framework☆255Updated 2 years ago
- A tool for pointesters to find candies in SharePoint☆254Updated 2 years ago
- ☆383Updated 4 years ago
- InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…☆191Updated 3 years ago
- Remotely enables Restricted Admin Mode☆209Updated 3 years ago
- Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus☆229Updated 3 years ago
- LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript☆333Updated 3 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆329Updated last year
- A tool to find folders excluded from AV real-time scanning using a time oracle☆233Updated last year
- Identify the attack paths in BloodHound breaking your AD tiering☆320Updated 2 years ago
- RIPPL is a tool that abuses a usermode only exploit to manipulate PPL processes on Windows☆7Updated 3 years ago
- Hookers are cooler than patches.☆169Updated 3 years ago
- Start new PowerShell without etw and amsi in pure nim☆157Updated 3 years ago
- ☆151Updated 2 months ago
- ☆216Updated 2 years ago
- Identifies the bytes that Microsoft Defender flags on.☆84Updated 2 years ago
- Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.☆120Updated 3 years ago
- PowerShell Obfuscation and Data Science☆174Updated 3 years ago
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆388Updated last year
- A proof of concept on attack vectors against Active Directory by abusing Active Directory Certificate Services (ADCS)☆187Updated 3 years ago