FuzzySecurity / BlueHatIL-2020
BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET
☆145Updated 5 years ago
Alternatives and similar repositories for BlueHatIL-2020:
Users that are interested in BlueHatIL-2020 are comparing it to the libraries listed below
- Lateral Movement technique using DCOM and HTA☆231Updated 2 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆106Updated 5 years ago
- ☆229Updated 6 years ago
- Pypykatz agent implemented in .NET☆86Updated 6 years ago
- Constrained Language Mode + AMSI bypass all in one☆156Updated 5 years ago
- An Insider Threat Toolkit☆149Updated 6 years ago
- lateral movement techniques that can be used during red team exercises☆270Updated 5 years ago
- C# Targeted Attack Reconnissance Tools☆121Updated 4 years ago
- A Powershell implementation of PrivExchange designed to run under the current user's context☆124Updated 6 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆256Updated 6 years ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆167Updated 4 years ago
- GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects☆248Updated 4 years ago
- ☆181Updated 3 years ago
- A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…☆89Updated 5 years ago
- Powershell module to get the NetNTLMv2 hash of the current user☆93Updated 2 years ago
- InsecurePowerShell is PowerShell with some security features removed.☆102Updated 7 years ago
- ☆109Updated 6 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆75Updated 6 years ago
- A C# implementation of PrivExchange by @_dirkjan.☆158Updated 6 years ago
- Collection of awesome Cobalt Strike Aggressor Scripts. All credit due to the authors☆151Updated 6 years ago
- Parse NTLM challenge messages over HTTP and SMB☆144Updated 2 years ago
- Parse PowerShell and Security event logs for sensitive information.☆125Updated 5 years ago
- Neutering Sysmon via driver unload☆225Updated 2 years ago
- Various C# projects for offensive security☆109Updated 5 years ago
- CobaltStrike External C2 for Websockets☆194Updated 5 years ago
- Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.☆201Updated 7 years ago
- CSHARP DCOM Fun☆126Updated 5 years ago
- The PowerThIEf, an Internet Explorer Post Exploitation library☆130Updated 3 weeks ago
- DLL Password Filter Implant with Exfiltration Capabilities☆135Updated 5 years ago
- Evading WinDefender ATP credential-theft☆254Updated 5 years ago