Aur3ns / LsassStealerLinks
Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testing only!
☆118Updated 4 months ago
Alternatives and similar repositories for LsassStealer
Users that are interested in LsassStealer are comparing it to the libraries listed below
Sorting:
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆154Updated last year
- Chrome browser extension-based Command & Control☆196Updated 4 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆209Updated last year
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆148Updated last year
- Leverage WindowsApp createdump tool to obtain an lsass dump☆151Updated last year
- Stage 0☆164Updated 10 months ago
- Inject RDPThief into memory with PowerShell.☆65Updated 9 months ago
- Enumerate Domain Users Without Authentication☆270Updated 6 months ago
- TeamServer and Client of Exploration Command and Control Framework☆175Updated last week
- Remote DLL Injection with Timer-based Shellcode Execution☆149Updated 3 months ago
- ☆149Updated 6 months ago
- An aggressor script that can help automate payload building in Cobalt Strike☆118Updated last year
- Active Directory Authentication Library☆80Updated last week
- Our Tips&Tricks☆126Updated 8 months ago
- Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege☆223Updated last year
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS☆150Updated 9 months ago
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆126Updated last year
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆76Updated last year
- A modification to fortra's CVE-2023-28252 exploit, compiled to exe☆54Updated last year
- Abuse leaked token handles.☆133Updated last year
- PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…☆154Updated last year
- Lateral Movement☆124Updated 2 years ago
- Evasive Golang Loader☆138Updated last year
- Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.☆175Updated 8 months ago
- ☆59Updated 6 months ago
- A Mythic agent for Windows written in C☆139Updated this week
- AV bypass while you sip your Chai!☆223Updated last year
- ☆195Updated 7 months ago
- this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)☆83Updated last year
- A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …☆136Updated last week