Flangvik / ObfuscatedSharpCollectionLinks
Attempt at Obfuscated version of SharpCollection
☆219Updated this week
Alternatives and similar repositories for ObfuscatedSharpCollection
Users that are interested in ObfuscatedSharpCollection are comparing it to the libraries listed below
Sorting:
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions☆323Updated 9 months ago
- A collection of code snippets built to assist with breaking chains.☆123Updated last year
- ☆212Updated last year
- psexecsvc - a python implementation of PSExec's native service implementation☆214Updated 6 months ago
- Cobalt Strike BOF for evasive .NET assembly execution☆267Updated 4 months ago
- PoC to coerce authentication from Windows hosts using MS-WSP☆258Updated last year
- SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.☆332Updated 3 months ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆283Updated 2 weeks ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆117Updated 2 years ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆320Updated 9 months ago
- Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking☆330Updated last month
- BOF for Kerberos abuse (an implementation of some important features of the Rubeus).☆487Updated 4 months ago
- ☆182Updated 2 months ago
- Use ESC1 to perform a makeshift DCSync and dump hashes☆212Updated last year
- .net config loader☆336Updated last year
- Impacket is a collection of Python classes for working with network protocols.☆292Updated last month
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆306Updated last year
- Extracting NetNTLM without touching lsass.exe☆239Updated last year
- Leak of any user's NetNTLM hash. Fixed in KB5040434☆258Updated last year
- Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …☆213Updated 10 months ago
- ☆221Updated 10 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆207Updated 10 months ago
- Execute commands interactively on remote Windows machines using the WinRM protocol☆208Updated last week
- PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.☆430Updated last year
- Payload Generation Framework☆94Updated last year
- Python tool to Check running WebClient services on multiple targets based on @leechristensen☆280Updated 4 years ago
- 🍊 Orange Tsai EventViewer RCE☆189Updated 3 years ago
- My implementation of the GIUDA project in C++☆185Updated 2 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆357Updated last year
- Tool for Active Directory Certificate Services enumeration and abuse☆164Updated 4 months ago