FuzzySecurity / BlueHatIL-2020
BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET
☆146Updated 5 years ago
Alternatives and similar repositories for BlueHatIL-2020:
Users that are interested in BlueHatIL-2020 are comparing it to the libraries listed below
- Lateral Movement technique using DCOM and HTA☆233Updated 2 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆113Updated 5 years ago
- An Insider Threat Toolkit☆151Updated 6 years ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆168Updated 4 years ago
- C# Targeted Attack Reconnissance Tools☆122Updated 4 years ago
- Constrained Language Mode + AMSI bypass all in one☆157Updated 5 years ago
- ☆229Updated 6 years ago
- Abusing Exchange via EWS☆148Updated 4 years ago
- lateral movement techniques that can be used during red team exercises☆271Updated 5 years ago
- A Powershell implementation of PrivExchange designed to run under the current user's context☆124Updated 6 years ago
- A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…☆90Updated 5 years ago
- Pypykatz agent implemented in .NET☆86Updated 6 years ago
- ☆110Updated 6 years ago
- InsecurePowerShell is PowerShell with some security features removed.☆104Updated 7 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆76Updated 6 years ago
- In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)☆167Updated 7 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆257Updated 6 years ago
- A C# implementation of PrivExchange by @_dirkjan.☆155Updated 6 years ago
- Powershell module to get the NetNTLMv2 hash of the current user☆93Updated 2 years ago
- CSHARP DCOM Fun☆128Updated 5 years ago
- Generates anti-sandbox analysis HTA files without payloads☆119Updated 8 years ago
- GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects☆248Updated 4 years ago
- Evading WinDefender ATP credential-theft☆255Updated 5 years ago
- ☆182Updated 3 years ago
- Parse PowerShell and Security event logs for sensitive information.☆125Updated 6 years ago
- Shellcoding utilities☆222Updated 4 years ago
- SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…☆291Updated 4 years ago
- Neutering Sysmon via driver unload☆228Updated 2 years ago
- The PowerThIEf, an Internet Explorer Post Exploitation library☆131Updated 2 months ago
- Check if MS-RPRN is remotely available with powershell/c#☆173Updated 6 years ago