By manipulating LSASS memory flags like UseLogonCredential and IsCredGuardEnabled, this repo demonstrates how Credential Guard can be bypassed—restoring cleartext credentials despite the protection appearing active. Requires SYSTEM-level access and targets VBS-based defenses.
☆15May 25, 2025Updated last year
Alternatives and similar repositories for CredentialGuardBypass
Users that are interested in CredentialGuardBypass are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Nuclei templates for source code analysis. Detects hardcoded secrets, config leaks, debug endpoints. Also helps identify OWASP Top 10 iss…☆83Jun 11, 2025Updated 11 months ago
- Julia rules for semgrep☆14Dec 9, 2025Updated 6 months ago
- Collection of Semgrep rules for security analysis☆10Mar 30, 2024Updated 2 years ago
- An ultra lightweight web screenshot tool with advanced DOM analysis features.☆43Apr 1, 2026Updated 2 months ago
- Low Noise Semgrep Security Rules☆22Feb 6, 2025Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Fuzzing Harness and Unpatched Crash Results from Fuzzing Defender MpEngine☆44Jul 29, 2025Updated 10 months ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆24Oct 4, 2021Updated 4 years ago
- ☆18Dec 20, 2025Updated 5 months ago
- Run-time loader and patcher☆15Sep 22, 2018Updated 7 years ago
- This is an Active Directory Pentesting Lab created by me which includes attacks like IPV6 DNS takeover, Smb relay, unconstrained delegati…☆23Jan 23, 2024Updated 2 years ago
- Small script for retrieving incoming transactions based on provided hour period.☆14Jan 24, 2022Updated 4 years ago
- Windows Event Log Killer☆12May 22, 2017Updated 9 years ago
- CryptnetURLCacheParser is a tool to parse CryptAPI cache files☆22Aug 3, 2024Updated last year
- "Sucosh" is an automated Source Code vulnerability scanner and assessment framework for Python(Flask-Django) & NodeJs capable of performi…☆39May 20, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- My collection of Semgrep rules for vulnerability detection on source code (swift, java, cobol)☆44Dec 3, 2025Updated 6 months ago
- A simple executable that hides processes from Task Manager by manually mapping itself into it and hooking NtQuerySystemInformation☆24May 25, 2025Updated last year
- ☆63Mar 15, 2026Updated 2 months ago
- Windows Security Descriptor Definition Language (SDDL) parser and formatter☆20Jun 8, 2020Updated 6 years ago
- RE for champions☆15May 28, 2026Updated last week
- Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2☆13Jul 15, 2023Updated 2 years ago
- ☆11Apr 7, 2022Updated 4 years ago
- A tool designed to hook into Windows applications and output named (and anonymous?) pipe traffic.☆17Feb 27, 2024Updated 2 years ago
- ☆16Updated this week
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- List of Command&Control (C2) software☆50Nov 11, 2022Updated 3 years ago
- ollvm, based on llvm-clang 5.0.2, 6.0.1, 7.0.1, 8.0, 9.0, 9.0.1☆19Apr 4, 2022Updated 4 years ago
- A Python client for the Global CVE Allocation System.☆18May 20, 2026Updated 2 weeks ago
- My Personal Kernel-Mode Process dumper☆14Feb 18, 2024Updated 2 years ago
- ☆21Jul 4, 2022Updated 3 years ago
- Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich☆19Jun 29, 2024Updated last year
- Quick ESXi Log Parser☆31Oct 20, 2025Updated 7 months ago
- A slightly more fun way to disable windows defender☆52May 4, 2025Updated last year
- CSharp4Pentesters☆11Mar 5, 2022Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A Simple heaptrack-compatible Heap Profiler for Windows C/C++ Applications☆12Jun 28, 2015Updated 10 years ago
- This is an AD pentest tools collection☆59Jul 6, 2024Updated last year
- Blocking Windows EDR agents by registering an own IPC-object in the Object Manager’s namespace (CVE-2023-3280, CVE-2024-5909, CVE-2024-20…☆37Feb 27, 2025Updated last year
- Used to grab banners from TCP services and search their contents for a specific string.☆16Feb 11, 2020Updated 6 years ago
- This script will not work with the latest version of chrome☆17May 11, 2025Updated last year
- ☆41Oct 16, 2025Updated 7 months ago
- Semgrep rules specific to Frappe Framework☆62Updated this week