FourCoreLabs / LolDriverScan

Related projects ⓘ

Alternatives and complementary repositories for LolDriverScan

• itaymigdal / LOLSpoof
  An interactive shell to spoof some LOLBins command line
  ☆180Updated 9 months ago
• floesen / EventLogCrasher
  ☆181Updated 10 months ago
• trustedsec / specula
  ☆181Updated 2 months ago
• Helixo32 / NimBlackout
  Kill AV/EDR leveraging BYOVD attack
  ☆311Updated last year
• amjcyber / pwnlook
  An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…
  ☆135Updated last month
• mandiant / msi-search
  ☆268Updated last year
• ACE-Responder / RogueSliver
  A suite of tools to disrupt campaigns using the Sliver C2 framework.
  ☆248Updated last year
• ricardojoserf / WhoamiAlternatives
  Different methods to get current username without using whoami
  ☆172Updated 9 months ago
• badsectorlabs / sccm-http-looter
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)
  ☆164Updated last month
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆143Updated 6 months ago
• Laokoon-SecurITy / Cortex-XDR-Config-Extractor
  Cortex XDR Config Extractor
  ☆119Updated last year
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆123Updated 5 months ago
• deepinstinct / NoFilter
  ☆294Updated 3 weeks ago
• LuemmelSec / Client-Checker
  ☆169Updated last month
• helviojunior / knowsmore
  KnowsMore is a swiss army knife tool for pentesting Microsoft Active Directory (NTLM Hashes, BloodHound, NTDS and DCSync).
  ☆209Updated 3 months ago
• CobblePot59 / ADcheck
  Assess the security of your Active Directory with few or all privileges.
  ☆186Updated this week
• An0nUD4Y / AV-EDR-Lab-Environment-Setup
  AV/EDR Lab environment setup references to help in Malware development
  ☆190Updated 3 weeks ago
• synacktiv / GPOddity
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆265Updated 2 weeks ago
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆206Updated last week
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆190Updated 5 months ago
• EvanMcBroom / lsa-whisperer
  Tools for interacting with authentication packages using their individual message protocols
  ☆298Updated 3 weeks ago
• jackmichalak / phishim
  Easy red team phishing with Puppeteer
  ☆127Updated last year
• sheimo / awesome-lolbins-and-beyond
  A curated list of awesome LOLBins, GTFO projects, and similar 'Living Off the Land' security resources.
  ☆118Updated 3 weeks ago
• RedefiningReality / Cobalt-Strike
  Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection
  ☆247Updated 6 months ago
• Leo4j / Invoke-SessionHunter
  Retrieve and display information about active user sessions on remote computers. No admin privileges required.
  ☆166Updated 3 months ago
• BlackSnufkin / Invoke-DumpMDEConfig
  PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…
  ☆136Updated 5 months ago
• SikretaLabs / BlueMap
  A Azure Exploitation Toolkit for Red Team & Pentesters
  ☆163Updated last year
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆117Updated 6 months ago
• infosecn1nja / VeilTransfer
  VeilTransfer is a data exfiltration utility designed to test and enhance the detection capabilities. This tool simulates real-world data …
  ☆103Updated 2 months ago