BorjaMerino / DoublePulsar-Volatility
Volatility plugin to help identify DoublePulsar implant by listing the array of pointers SrvTransaction2DispatchTable from the srv.sys driver.
☆16Updated 7 years ago
Alternatives and similar repositories for DoublePulsar-Volatility:
Users that are interested in DoublePulsar-Volatility are comparing it to the libraries listed below
- Material from our CANAPE workshop☆32Updated 6 years ago
- WhiteBox CMS analysis☆69Updated last year
- Comprehensive Pivoting Framework☆20Updated 8 years ago
- Beagle(bone) in the Middle☆25Updated 4 years ago
- An offensive Powershell console☆30Updated 9 years ago
- Simple DDE object detector☆56Updated 7 years ago
- Parses Java Cache IDX files☆39Updated 7 years ago
- This tool will extract useful information from the McAfee update SiteList file and decrypt the associated password for each entry.☆26Updated 7 years ago
- McAfee ePolicy 0wner exploit code☆46Updated 6 years ago
- ☆25Updated 8 years ago
- Tool orchestrator. Specify targets and run sets of tools against them.☆19Updated 8 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 9 years ago
- Mixing up CVE and MS like a pro☆24Updated 8 years ago
- Issues to consider when planning a red team exercise.☆15Updated 7 years ago
- Spray SMB with hashes, Then psexec☆32Updated 5 years ago
- ☆16Updated 7 years ago
- Office 365 MFA capture toolkit☆12Updated 7 years ago
- PHDAYS |||☆17Updated 11 years ago
- Various snippets created during malware analysis☆22Updated 6 years ago
- Talk given at DerbyCon and RuxCon 2016☆22Updated 8 years ago
- ☆19Updated 7 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 11 years ago
- A vulnerability reporting database to help pentesters write consistent, easy reports.☆9Updated 9 years ago
- Environmental (and http) keying for scripting languages☆39Updated 6 years ago
- ☆9Updated 7 years ago
- Firework is a proof of concept tool to interact with Microsoft Workplaces creating valid files required for the provisioning process.☆44Updated 4 years ago
- Burp Suite extension to perform Kerberos authentication☆12Updated 7 years ago
- Development guide for Volatility Plugins☆23Updated 7 years ago
- Automated Exploit Toolkit for CVE-2015-6095 and CVE-2016-0049☆50Updated 7 years ago
- malicious file maker/sender to create and send malicious attachments to test your email filter/alerting☆69Updated 7 years ago