CICADA8-Research / LogHunter
Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)
☆64Updated 9 months ago
Alternatives and similar repositories for LogHunter:
Users that are interested in LogHunter are comparing it to the libraries listed below
- Two in one, patch lifetime powershell console, no more etw and amsi!☆84Updated 8 months ago
- ☆83Updated 2 months ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆110Updated 11 months ago
- Scripts I use to deploy Havoc on Linode and setup categorization and SSL☆40Updated 9 months ago
- Lateral Movement☆123Updated last year
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆79Updated 6 months ago
- Source code and examples for PassiveAggression☆55Updated 9 months ago
- Inject RDPThief into memory with PowerShell.☆61Updated 2 months ago
- Our Tips&Tricks☆111Updated last month
- Construct the payload at runtime using an array of offsets☆63Updated 9 months ago
- TokenCert☆94Updated 4 months ago
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆55Updated last year
- ☆103Updated last month
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆118Updated 5 months ago
- ☆53Updated 5 months ago
- ☆78Updated 7 months ago
- Duplicate not owned Token from Running Process☆72Updated last year
- Tool to extract username and password of current user from PanGPA in plaintext☆83Updated 3 months ago
- ☆54Updated 4 months ago
- Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.☆147Updated last week
- Example code samples from our ScriptBlock Smuggling Blog post☆90Updated 9 months ago