CICADA8-Research / MyMSIAnalyzerLinks
Analyse MSI files for vulnerabilities
☆138Updated 11 months ago
Alternatives and similar repositories for MyMSIAnalyzer
Users that are interested in MyMSIAnalyzer are comparing it to the libraries listed below
Sorting:
- Source code and examples for PassiveAggression☆64Updated last year
- ☆108Updated 9 months ago
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆140Updated last year
- Situational Awareness script to identify how and where to run implants☆61Updated 8 months ago
- RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging☆196Updated 5 months ago
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆87Updated 5 months ago
- AutoRMM is a collection of scripts and instructions we are organizing, to test delivery mechanisms for RMM and screen sharing tools, alo…☆83Updated 3 weeks ago
- Inject RDPThief into memory with PowerShell.☆65Updated 7 months ago
- Windows Administrator level Implant.☆50Updated 11 months ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆148Updated last year
- ☆58Updated 9 months ago
- POC of GITHUB simple C2 in rust☆52Updated last month
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆174Updated 3 months ago
- PoC that downloads an executable from a public SSL certificate☆125Updated last month
- The different ways to dump lsass☆94Updated last week
- Convert your shellcode into an ASCII string☆110Updated 2 months ago
- BeaconatorC2 is a framework for red teaming and adversarial emulation, providing a full-featured management interface, along with a catal…☆84Updated last week
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆153Updated 3 weeks ago
- ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…☆114Updated 7 months ago
- Tool to extract username and password of current user from PanGPA in plaintext☆87Updated 8 months ago
- Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers☆123Updated 11 months ago
- Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C☆39Updated 5 years ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Updated 5 months ago
- Permanently disable EDRs as local admin☆94Updated last month
- .NET tool used to enrich RPC telemetry☆96Updated 2 months ago
- PowerShell script to generate ShellCode in various formats☆43Updated 11 months ago
- DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.☆98Updated last year
- Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…☆77Updated 9 months ago
- Example code samples from our ScriptBlock Smuggling Blog post☆91Updated last year