CICADA8-Research / MyMSIAnalyzer
Analyse MSI files for vulnerabilities
☆121Updated 4 months ago
Alternatives and similar repositories for MyMSIAnalyzer:
Users that are interested in MyMSIAnalyzer are comparing it to the libraries listed below
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆141Updated 5 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆152Updated last month
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆143Updated 8 months ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆193Updated 7 months ago
- Two in one, patch lifetime powershell console, no more etw and amsi!☆84Updated 6 months ago
- Stage 0☆140Updated last month
- ☆102Updated 2 months ago
- Example code samples from our ScriptBlock Smuggling Blog post☆87Updated 7 months ago
- ☆136Updated last month
- ☆185Updated 11 months ago
- Construct the payload at runtime using an array of offsets☆61Updated 6 months ago
- Source code and examples for PassiveAggression.☆54Updated 7 months ago
- ☆112Updated 11 months ago
- A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders Stardust☆83Updated 9 months ago
- A Mythic Agent written in PIC C.☆167Updated last week
- ☆136Updated 3 months ago
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆45Updated 10 months ago
- This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.☆76Updated 4 months ago
- ☆136Updated 5 months ago
- Tool to extract username and password of current user from PanGPA in plaintext☆80Updated 3 weeks ago
- An interactive shell to spoof some LOLBins command line☆181Updated 11 months ago
- Windows Administrator level Implant.☆48Updated 3 months ago
- StoneKeeper C2, an experimental EDR evasion framework for research purposes☆151Updated 3 weeks ago
- Evade EDR's the simple way, by not touching any of the API's they hook.☆68Updated 5 months ago
- Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…☆72Updated 2 months ago
- Lifetime AMSI bypass.☆35Updated 6 months ago
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆60Updated 7 months ago
- Inject RDPThief into memory with PowerShell.☆58Updated 3 months ago
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆157Updated last month
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆149Updated 8 months ago