Cn33liz / MSBuildShell
MSBuildShell, a Powershell Host running within MSBuild.exe
☆287Updated 5 years ago
Alternatives and similar repositories for MSBuildShell:
Users that are interested in MSBuildShell are comparing it to the libraries listed below
- DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.☆253Updated 6 years ago
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆376Updated 5 years ago
- SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…☆289Updated 4 years ago
- Assorted scripts and one off things☆266Updated 7 months ago
- ☆351Updated 3 years ago
- Lateral Movement technique using DCOM and HTA☆231Updated 2 years ago
- ☆279Updated 4 years ago
- A Bring Your Own Land Toolkit that Doubles as a WMI Provider☆285Updated 6 years ago
- PSAmsi is a tool for auditing and defeating AMSI signatures.☆389Updated 6 years ago
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆320Updated 7 years ago
- GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects☆248Updated 4 years ago
- CScriptShell, a Powershell Host running within cscript.exe☆160Updated 7 years ago
- Collection of CSharp Assemblies focused on Post-Exploitation Capabilities☆225Updated 5 years ago
- Collection of scripts, binaries and the like to aid in WhiteList Evasion on a Microsoft Windows Network.☆129Updated 9 years ago
- Example DLL to load from Windows NetShell☆178Updated 8 years ago
- Constrained Language Mode + AMSI bypass all in one☆156Updated 5 years ago
- ☆258Updated 2 years ago
- A library for integrating communication channels with the Cobalt Strike External C2 server☆283Updated 7 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆256Updated 6 years ago
- PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)☆323Updated 6 years ago
- An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.☆303Updated 2 years ago
- Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.☆200Updated 6 years ago
- Create a minidump of the LSASS process from memory☆259Updated 2 years ago
- A PoC WMI backdoor presented at Black Hat 2015☆273Updated 9 years ago
- A C# implementation of PrivExchange by @_dirkjan.☆155Updated 6 years ago
- AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.☆386Updated 5 years ago
- ☆307Updated 6 years ago
- ☆208Updated 6 years ago
- ☆229Updated 6 years ago
- Evading WinDefender ATP credential-theft☆254Updated 5 years ago