Arvanaghi / CheckPlease
Sandbox evasion modules written in PowerShell, Python, Go, Ruby, C, C#, Perl, and Rust.
☆912Updated 3 years ago
Alternatives and similar repositories for CheckPlease:
Users that are interested in CheckPlease are comparing it to the libraries listed below
- Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS☆1,488Updated 6 years ago
- HTA encryption tool for RedTeams☆1,382Updated 2 years ago
- Framework for Making Environmental Keyed Payloads (NO LONGER SUPPORTED)☆746Updated 6 years ago
- Malicious Macro Generator☆826Updated 5 years ago
- SafetyKatz is a combination of slightly modified version of @gentilkiwi's Mimikatz project and @subtee's .NET PE Loader☆1,247Updated 5 years ago
- Token Privilege Research☆807Updated 7 years ago
- Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing…☆1,578Updated 2 years ago
- PowerShell Remote Download Cradle Generator & Obfuscator☆828Updated 6 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆1,002Updated 6 years ago
- Process Injection☆758Updated 3 years ago
- Windows Event Log Killer☆1,773Updated last year
- The project is called Great SCT (Great Scott). Great SCT is an open source project to generate application white list bypasses. This tool…☆1,125Updated 4 years ago
- Also known by Microsoft as Knifecoat☆1,125Updated 2 years ago
- Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources☆1,494Updated last year
- A tool to create a JScript file which loads a .NET v2 assembly from memory.☆1,268Updated 4 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,471Updated last year
- A VBA implementation of the RunPE technique or how to bypass application whitelisting.☆802Updated 5 years ago
- LSASS memory dumper using direct system calls and API unhooking.☆1,518Updated 4 years ago
- ☆479Updated 7 years ago
- Run PowerShell with rundll32. Bypass software restrictions.☆1,787Updated 3 years ago
- Collection of scripts and templates to generate Office documents embedded with the DDE, macro-less command execution technique.☆635Updated last year
- Cmd.exe Command Obfuscation Generator & Detection Test Harness☆853Updated 6 years ago
- PowerShell Runspace Post Exploitation Toolkit☆1,532Updated 5 years ago
- A modular C2 framework☆435Updated last month
- Loader, dropper generator with multiple features for bypassing client-side and network-side countermeasures.☆948Updated 5 years ago
- Toolbox containing research notes & PoC code for weaponizing .NET's DLR☆519Updated 3 years ago
- New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.☆929Updated 7 years ago
- SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, Supe…☆1,253Updated 2 years ago
- PowerShell Pass The Hash Utils☆1,555Updated 6 years ago
- Run PowerShell command without invoking powershell.exe☆1,494Updated last year