CICADA8-Research / MyMSIAnalyzer
Analyse MSI files for vulnerabilities
☆129Updated 7 months ago
Alternatives and similar repositories for MyMSIAnalyzer:
Users that are interested in MyMSIAnalyzer are comparing it to the libraries listed below
- Two in one, patch lifetime powershell console, no more etw and amsi!☆88Updated this week
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆141Updated 9 months ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆198Updated 10 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆163Updated 4 months ago
- Stage 0☆156Updated 4 months ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆146Updated 11 months ago
- Our Tips&Tricks☆115Updated 2 months ago
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- Source code and examples for PassiveAggression☆54Updated 10 months ago
- RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging☆183Updated last month
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆65Updated 10 months ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Updated 3 weeks ago
- ☆154Updated 4 months ago
- Inject RDPThief into memory with PowerShell.☆62Updated 3 months ago
- ☆128Updated 2 months ago
- ☆117Updated last year
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆92Updated this week
- ☆105Updated 5 months ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆82Updated last month
- Windows Persistence IT-Security☆97Updated last month
- Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io☆82Updated last year
- ☆148Updated 2 months ago
- Situational Awareness script to identify how and where to run implants☆50Updated 4 months ago
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆113Updated 11 months ago
- ☆179Updated 3 weeks ago
- POC of GITHUB simple C2 in rust☆53Updated 2 months ago
- Local & remote Windows DLL Proxying☆164Updated 10 months ago
- Example code samples from our ScriptBlock Smuggling Blog post☆90Updated 10 months ago
- Evade EDR's the simple way, by not touching any of the API's they hook.☆100Updated 2 months ago
- A Mythic Agent written in PIC C.☆186Updated 2 months ago