Cybereason / Invoke-WMILM
☆229Updated 6 years ago
Alternatives and similar repositories for Invoke-WMILM:
Users that are interested in Invoke-WMILM are comparing it to the libraries listed below
- Lateral Movement technique using DCOM and HTA☆231Updated 2 years ago
- A repository of some of my Windows 10 Device Guard Bypasses☆135Updated 7 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆256Updated 6 years ago
- The PowerThIEf, an Internet Explorer Post Exploitation library☆130Updated 3 weeks ago
- In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)☆163Updated 7 years ago
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆319Updated 7 years ago
- BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET☆145Updated 5 years ago
- a simple portforwarder in ps1 with embeded c# code☆89Updated 6 years ago
- Generates anti-sandbox analysis HTA files without payloads☆118Updated 8 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆75Updated 6 years ago
- A Powershell implementation of PrivExchange designed to run under the current user's context☆124Updated 6 years ago
- Liniaal - A communication extension to Ruler☆97Updated 6 years ago
- CScriptShell, a Powershell Host running within cscript.exe☆160Updated 7 years ago
- POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's s…☆103Updated 7 years ago
- A Bring Your Own Land Toolkit that Doubles as a WMI Provider☆285Updated 6 years ago
- PowerDNS: Powershell DNS Delivery☆211Updated 6 years ago
- DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.☆253Updated 6 years ago
- DNSDelivery provides delivery and in memory execution of shellcode or .Net assembly using DNS requests delivery channel.☆147Updated 5 years ago
- Assorted scripts and one off things☆265Updated 7 months ago
- Aggregation of Cobalt Strike's aggressor scripts.☆142Updated 6 years ago
- VBS Reversed TCP Meterpreter Stager☆86Updated 7 years ago
- ☆272Updated 2 years ago
- PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)☆322Updated 5 years ago
- A command line tool for creating malicious outlook rules☆161Updated 6 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆106Updated 5 years ago
- A library for integrating communication channels with the Cobalt Strike External C2 server☆283Updated 7 years ago
- A collection of files for adding and leveraging custom properties in BloodHound.☆182Updated 5 years ago
- a tool to make it easy and fast to test various forms of injection☆172Updated 5 years ago
- UAC Bypass with mmc via alpc☆156Updated 5 years ago
- How To Execute Shellcode via HTA☆137Updated 7 years ago