CICADA8-Research / MyMSIAnalyzerLinks
Analyse MSI files for vulnerabilities
☆137Updated 11 months ago
Alternatives and similar repositories for MyMSIAnalyzer
Users that are interested in MyMSIAnalyzer are comparing it to the libraries listed below
Sorting:
- ☆107Updated 9 months ago
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆140Updated last year
- Our Tips&Tricks☆123Updated 5 months ago
- RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging☆195Updated 5 months ago
- Source code and examples for PassiveAggression☆63Updated last year
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆147Updated last year
- ☆119Updated last year
- Situational Awareness script to identify how and where to run implants☆55Updated 8 months ago
- .NET tool used to enrich RPC telemetry☆95Updated last month
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆174Updated 2 months ago
- Convert your shellcode into an ASCII string☆103Updated last month
- Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C☆39Updated 5 years ago
- Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers☆123Updated 10 months ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Updated 4 months ago
- Persist like a Dodder☆62Updated 2 months ago
- AutoRMM is a collection of scripts and instructions we are organizing, to test delivery mechanisms for RMM and screen sharing tools, alo…☆64Updated this week
- Windows Administrator level Implant.☆49Updated 10 months ago
- EvilGinx Modify / Custom PHISHLETs / JS☆64Updated this week
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- Decrypt GlobalProtect configuration and cookie files.☆150Updated 10 months ago
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆149Updated last week
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆72Updated last year
- ☆57Updated 8 months ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆85Updated 5 months ago
- Shellcode encryptor using a substitution cipher with a randomly generated key.☆135Updated 6 months ago
- C++ Staged Shellcode Loader with Evasion capabilities.☆94Updated 10 months ago
- PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…☆149Updated last year
- Two in one, patch lifetime powershell console, no more etw and amsi!☆95Updated 3 months ago
- DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.☆97Updated last year
- ACL Viewer for Windows☆126Updated 3 months ago