FourCoreLabs / LolDriverScan
Scan vulnerable drivers on Windows with loldrivers.io
☆171Updated last year
Alternatives and similar repositories for LolDriverScan:
Users that are interested in LolDriverScan are comparing it to the libraries listed below
- An interactive shell to spoof some LOLBins command line☆181Updated 11 months ago
- ☆185Updated 3 months ago
- A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …☆150Updated last month
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆152Updated last month
- A BloodHound collector for Microsoft Configuration Manager☆277Updated 2 weeks ago
- Different methods to get current username without using whoami☆173Updated 11 months ago
- DDSpoof is a tool that enables DHCP DNS Dynamic Update attacks against Microsoft DHCP servers in AD environments.☆118Updated 9 months ago
- ☆185Updated 11 months ago
- Find potential DLL Sideloads on your windows computer☆168Updated last week
- ☆269Updated last year
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)☆174Updated 3 months ago
- Kill AV/EDR leveraging BYOVD attack☆334Updated last year
- C2 Infrastructure Automation☆92Updated 2 months ago
- Python implementation of GhostPack's Seatbelt situational awareness tool☆235Updated 2 months ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆143Updated 8 months ago
- PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…☆140Updated 7 months ago
- A curated list of awesome LOLBins, GTFO projects, and similar 'Living Off the Land' security resources.☆130Updated 2 months ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆268Updated 2 months ago
- A suite of tools to disrupt campaigns using the Sliver C2 framework.☆251Updated last year
- A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.☆132Updated 8 months ago
- Tools for interacting with authentication packages using their individual message protocols☆303Updated 2 weeks ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆193Updated 7 months ago
- An ADCS honeypot to catch attackers in your internal network.☆248Updated 6 months ago
- ☆197Updated 3 months ago
- yet another AV killer tool using BYOVD☆264Updated last year
- .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation☆260Updated 2 months ago
- Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …☆184Updated 3 months ago
- Slides and Codes used for the workshop Red Team Infrastructure Automation☆176Updated 9 months ago
- Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…☆215Updated 3 weeks ago
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆149Updated 8 months ago