BC-SECURITY / Offensive-VBA-and-XLS-Entanglement

Related projects ⓘ

Alternatives and complementary repositories for Offensive-VBA-and-XLS-Entanglement

• S3cur3Th1sSh1t / Get-System-Techniques
  ☆89Updated 2 years ago
• Ben0xA / DoUCMe
  ☆69Updated 3 years ago
• Adepts-Of-0xCC / VBA-macro-experiments
  Collection of VBA macro published in our twitter / blog
  ☆154Updated 2 years ago
• RedSiege / hot-manchego
  Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.
  ☆143Updated 4 years ago
• aahmad097 / BadOutlook
  (kinda) Malicious Outlook Reader
  ☆133Updated 3 years ago
• Barbarisch / forkatz
  credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege
  ☆121Updated 3 years ago
• checkymander / Carbuncle
  Tool for interacting with outlook interop during red team engagements
  ☆143Updated 3 years ago
• rvrsh3ll / NoMSBuild
  MSBuild without MSbuild.exe
  ☆128Updated 3 years ago
• FatRodzianko / Get-RBCD-Threaded
  Tool to discover Resource-Based Constrained Delegation attack paths in Active Directory environments
  ☆118Updated 3 years ago
• guervild / BOFs
  Cobalt Strike Beacon Object Files
  ☆159Updated 2 years ago
• rvrsh3ll / SharpSMBSpray
  Spray a hash via smb to check for local administrator access
  ☆140Updated 3 years ago
• 3xpl01tc0d3r / Callidus
  ☆161Updated last year
• rasta-mouse / GadgetToJScript
  A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …
  ☆83Updated 4 years ago
• rvrsh3ll / Rubeus-Rundll32
  Run Rubeus via Rundll32
  ☆198Updated 4 years ago
• rvrsh3ll / MSBuildAPICaller
  MSBuild Without MSBuild.exe
  ☆155Updated 3 years ago
• Adepts-Of-0xCC / MiniDumpWriteDumpPoC
  MiniDumpWriteDump behavior modification hook
  ☆49Updated 3 years ago
• xforcered / CredBandit
  Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…
  ☆232Updated 3 years ago
• rxwx / cs-rdll-ipc-example
  Example code for using named pipe output with beacon ReflectiveDLLs
  ☆110Updated 4 years ago
• rmdavy / HeapsOfFun
  AMSI Bypass Via the Heap
  ☆105Updated 3 years ago
• S3cur3Th1sSh1t / Invoke-Sharpcradle
  Load C# Code straight to memory
  ☆53Updated 4 years ago
• outflanknl / FindObjects-BOF
  A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…
  ☆266Updated last year
• 0xVIC / myAPPLockerBypassSummary
  Simple APPLocker bypass summary
  ☆39Updated 6 years ago
• thiagomayllart / Harvis
  Harvis is designed to automate your C2 Infrastructure.
  ☆104Updated 2 years ago
• whydee86 / SnD_AMSI
  Start new PowerShell without etw and amsi in pure nim
  ☆158Updated 2 years ago
• boku7 / winx64-InjectAllProcessesMeterpreter-Shellcode
  64bit Windows 10 shellcode that injects all processes with Meterpreter reverse shells.
  ☆127Updated last year
• rasta-mouse / RuralBishop
  D/Invoke port of UrbanBishop
  ☆104Updated 4 years ago
• S3cur3Th1sSh1t / NamedPipePTH
  Pass the Hash to a named pipe for token Impersonation
  ☆140Updated 3 years ago