CICADA8-Research / MyMSIAnalyzer
Analyse MSI files for vulnerabilities
☆131Updated 8 months ago
Alternatives and similar repositories for MyMSIAnalyzer
Users that are interested in MyMSIAnalyzer are comparing it to the libraries listed below
Sorting:
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆141Updated 9 months ago
- ☆105Updated 6 months ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆148Updated last year
- Stage 0☆159Updated 4 months ago
- ☆154Updated 5 months ago
- Source code and examples for PassiveAggression☆56Updated 11 months ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆200Updated 11 months ago
- Our Tips&Tricks☆118Updated 3 months ago
- ☆128Updated 3 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆164Updated 5 months ago
- ☆74Updated last week
- Inject RDPThief into memory with PowerShell.☆63Updated 3 months ago
- A Mythic Agent written in PIC C.☆189Updated 3 months ago
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆70Updated 11 months ago
- PowerShell script to generate ShellCode in various formats☆41Updated 7 months ago
- Two in one, patch lifetime powershell console, no more etw and amsi!☆89Updated 2 weeks ago
- RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging☆187Updated 2 months ago
- ☆155Updated 9 months ago
- Example code samples from our ScriptBlock Smuggling Blog post☆90Updated 10 months ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆82Updated 2 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆199Updated 6 months ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Updated last month
- Leverage WindowsApp createdump tool to obtain an lsass dump☆149Updated 7 months ago
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆151Updated last year
- ☆179Updated last month
- Persist like a Dodder☆33Updated this week
- Remotely Enumerate sessions using undocumented Windows Station APIs☆117Updated 8 months ago
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆94Updated last week
- Situational Awareness script to identify how and where to run implants☆49Updated 5 months ago