CICADA8-Research/MyMSIAnalyzer external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

CICADA8-Research/MyMSIAnalyzer

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/CICADA8-Research/MyMSIAnalyzer)

Close

CICADA8-Research / MyMSIAnalyzerView on GitHubMore

• External links
• Readme badge

Analyse MSI files for vulnerabilities

☆142Aug 30, 2024Updated last year

Alternatives and similar repositories for MyMSIAnalyzer

Users that are interested in MyMSIAnalyzer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• deh00ni / NtDumpBOF

  View on GitHub
  ☆100Sep 1, 2024Updated last year
• BlackSnufkin / NyxInvoke

  View on GitHub
  NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
  ☆234Feb 12, 2025Updated last year
• seriotonctf / kerberos_aes_key

  View on GitHub
  Generate AES128 and AES256 Kerberos keys from a given username, password, and realm
  ☆18Sep 18, 2024Updated last year
• soheilsec / RT-workshop-2024

  View on GitHub
  فایل ها و فیلم های ورکشاپ ردتیم 2024 با هانت لرن
  ☆32Sep 15, 2024Updated last year
• CICADA8-Research / COMThanasia

  View on GitHub
  A set of programs for analyzing common vulnerabilities in COM
  ☆249Sep 8, 2024Updated last year
• horizon3ai / CVE-2024-9465

  View on GitHub
  Proof of Concept Exploit for CVE-2024-9465
  ☆31Oct 9, 2024Updated last year
• MAWK0235 / CVE-2024-24401

  View on GitHub
  Auto exploitation tool for CVE-2024-24401.
  ☆36Sep 7, 2024Updated last year
• CICADA8-Research / LogHunter

  View on GitHub
  Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)
  ☆78Jun 11, 2024Updated last year
• Offensive-Panda / LsassReflectDumping

  View on GitHub
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆216Oct 19, 2024Updated last year
• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP

  View on GitHub
  ☆64Mar 14, 2024Updated 2 years ago
• MzHmO / LeakedWallpaper

  View on GitHub
  Leak of any user's NetNTLM hash. Fixed in KB5040434
  ☆260Aug 13, 2024Updated last year
• Leo4j / Invoke-SMBRemoting

  View on GitHub
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆181May 19, 2025Updated 10 months ago
• klezVirus / DriverJack

  View on GitHub
  Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths
  ☆361Aug 11, 2024Updated last year
• ricardojoserf / NativeBypassCredGuard

  View on GitHub
  Bypass Credential Guard by patching WDigest.dll using only NTAPI functions
  ☆268Apr 8, 2025Updated 11 months ago
• amjcyber / pwnlook

  View on GitHub
  An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…
  ☆166Oct 9, 2024Updated last year
• rweijnen / createdump

  View on GitHub
  Leverage WindowsApp createdump tool to obtain an lsass dump
  ☆153Sep 20, 2024Updated last year
• deepinstinct / ShimMe

  View on GitHub
  ☆147Oct 29, 2024Updated last year
• MWR-CyberSec / AD-CS-Forest-Exploiter

  View on GitHub
  Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
  ☆129Dec 2, 2023Updated 2 years ago
• zeze-zeze / NamedPipeMaster

  View on GitHub
  a tool used to analyze and monitor in named pipes
  ☆194Oct 27, 2024Updated last year
• vxCrypt0r / AMSI_VEH

  View on GitHub
  A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, f…
  ☆169May 30, 2024Updated last year
• klezVirus / koppeling-p

  View on GitHub
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆79Aug 5, 2024Updated last year
• deepinstinct / DCOMUploadExec

  View on GitHub
  DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
  ☆384Dec 13, 2024Updated last year
• CICADA8-Research / RemoteKrbRelay

  View on GitHub
  Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
  ☆640May 8, 2025Updated 10 months ago
• safedv / RustiveDump

  View on GitHub
  LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and r…
  ☆385Apr 26, 2025Updated 10 months ago
• CICADA8-Research / Spyndicapped

  View on GitHub
  COM ViewLogger — new malware keylogging technique
  ☆408Jan 6, 2025Updated last year
• passthehashbrowns / VectoredExceptionHandling

  View on GitHub
  ☆108Aug 21, 2024Updated last year
• CICADA8-Research / TypeLibWalker

  View on GitHub
  TypeLib persistence technique
  ☆141Oct 22, 2024Updated last year
• AlteredSecurity / Disable-TamperProtection

  View on GitHub
  A POC to disable TamperProtection and other Defender / MDE components
  ☆255Jun 6, 2024Updated last year
• t94j0 / adexplorersnapshot-rs

  View on GitHub
  ☆94Dec 9, 2025Updated 3 months ago
• BlackSnufkin / Invoke-DumpMDEConfig

  View on GitHub
  PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…
  ☆155Jun 10, 2024Updated last year
• mlcsec / proctools

  View on GitHub
  Small toolkit for extracting information and dumping sensitive strings from Windows processes
  ☆117Jul 17, 2024Updated last year
• sinsinology / CVE-2024-29855

  View on GitHub
  PoC for the Veeam Recovery Orchestrator Authentication CVE-2024-29855
  ☆19Jun 17, 2024Updated last year
• Maldev-Academy / EmbedPayloadInPng

  View on GitHub
  Embed a payload inside a PNG file
  ☆371Oct 24, 2024Updated last year
• cpu0x00 / Ghost

  View on GitHub
  Evasive shellcode loader
  ☆400Oct 17, 2024Updated last year
• synacktiv / SCCMSecrets

  View on GitHub
  SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
  ☆266Nov 22, 2025Updated 4 months ago
• rotarydrone / GlobalUnProtect

  View on GitHub
  Decrypt GlobalProtect configuration and cookie files.
  ☆157Sep 10, 2024Updated last year
• mandiant / msi-search

  View on GitHub
  ☆291Jul 20, 2023Updated 2 years ago
• safedv / RustPotato

  View on GitHub
  A Rust implementation of GodPotato — abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTA…
  ☆358Mar 17, 2026Updated last week
• Octoberfest7 / Secure_Stager

  View on GitHub
  An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution
  ☆195Nov 27, 2024Updated last year