Cybereason / Invoke-WMILM
☆229Updated 6 years ago
Alternatives and similar repositories for Invoke-WMILM:
Users that are interested in Invoke-WMILM are comparing it to the libraries listed below
- Lateral Movement technique using DCOM and HTA☆233Updated 2 years ago
- A Bring Your Own Land Toolkit that Doubles as a WMI Provider☆285Updated 6 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆257Updated 6 years ago
- Generates anti-sandbox analysis HTA files without payloads☆119Updated 8 years ago
- A repository of some of my Windows 10 Device Guard Bypasses☆136Updated 7 years ago
- POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's s…☆104Updated 7 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆76Updated 6 years ago
- Liniaal - A communication extension to Ruler☆97Updated 6 years ago
- The PowerThIEf, an Internet Explorer Post Exploitation library☆131Updated 2 months ago
- DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.☆252Updated 6 years ago
- CScriptShell, a Powershell Host running within cscript.exe☆160Updated 8 years ago
- BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET☆146Updated 5 years ago
- How To Execute Shellcode via HTA☆138Updated 7 years ago
- VBS Reversed TCP Meterpreter Stager☆87Updated 7 years ago
- In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)☆167Updated 7 years ago
- Cobalt Strike SCT payload obfuscator☆142Updated 7 years ago
- A command line tool for creating malicious outlook rules☆162Updated 6 years ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆168Updated 4 years ago
- A Powershell implementation of PrivExchange designed to run under the current user's context☆124Updated 6 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆113Updated 5 years ago
- PowerDNS: Powershell DNS Delivery☆212Updated 6 years ago
- ☆79Updated 8 years ago
- A collection of files for adding and leveraging custom properties in BloodHound.☆183Updated 5 years ago
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆321Updated 7 years ago
- Aggregation of Cobalt Strike's aggressor scripts.☆143Updated 7 years ago
- lateral movement techniques that can be used during red team exercises☆271Updated 5 years ago
- PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)☆325Updated 6 years ago
- Assorted scripts and one off things☆268Updated 8 months ago
- ☆272Updated 2 years ago
- A C# implementation of PrivExchange by @_dirkjan.☆155Updated 6 years ago