ChoiSG / GwisinMsiLinks
PoC MSI payload based on ASEC/AhnLab's blog post
☆23Updated 2 years ago
Alternatives and similar repositories for GwisinMsi
Users that are interested in GwisinMsi are comparing it to the libraries listed below
Sorting:
- This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…☆24Updated 3 years ago
- A simple to use single-include Windows API resolver☆22Updated last year
- NanoDumpInject from https://s3cur3th1ssh1t.github.io/Reflective-Dump-Tools/ , minor edits with a few syscalls☆11Updated 3 years ago
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆33Updated 2 years ago
- Smuggle a file to a user's browser☆20Updated 3 years ago
- Extension functionality for the NightHawk operator client☆27Updated last year
- Items related to the RedELK workshop given at security conferences☆29Updated last year
- A collection of tools using OCR to extract potential usernames from RDP screenshots.☆30Updated last year
- ☆19Updated last year
- Some of my custom "tools".☆29Updated 3 years ago
- Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level☆26Updated 3 years ago
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆33Updated 2 years ago
- ☆12Updated 3 years ago
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Updated 3 years ago
- Identify binaries with Authenticode digital signatures signed to an internal CA/domain☆40Updated last year
- Beacon Object Files used for Cobalt Strike☆19Updated 2 years ago
- The Totally Legit Authentication Dialog☆12Updated last year
- powershell script i wrote that can suspend an arbitrary process (with limits)☆20Updated 2 years ago
- ☆31Updated 2 years ago
- A small example of loading BOFs in Python with pure reflection☆19Updated 2 years ago
- ☆17Updated 2 years ago
- ☆47Updated 2 years ago
- A lightweight HTTP/HTTPS reverse proxy for efficient, policy-based traffic filtering and redirection.☆45Updated 2 years ago
- This repo hosts a poc of how to execute F# code within an unmanaged process☆68Updated last year
- WMI SA stuffs☆30Updated 3 years ago
- Microsoft365 Device Code Phishing Framework☆37Updated 3 years ago
- Nemesis agent for Mythic☆27Updated 11 months ago
- Extension functionality for the NightHawk operator client☆27Updated last year
- ☆18Updated last year
- Brute Ratel LDAP filtering and sorting tool. Easily take BR log output and pull hostnames for ease of use with other red team tooling. Su…☆38Updated last year