GhostPack / Invoke-Evasion

Related projects ⓘ

Alternatives and complementary repositories for Invoke-Evasion

• njcve / inflate.py
  Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.
  ☆117Updated 2 years ago
• jfmaes / Invoke-DLLClone
  Koppeling x Metatwin x LazySign
  ☆203Updated 3 years ago
• Luct0r / KerberOPSEC
  OPSEC safe Kerberoasting in C#
  ☆188Updated 2 years ago
• Allevon412 / TeamsImplant
  ☆202Updated 2 years ago
• garrettfoster13 / aced
  ☆152Updated this week
• Sq00ky / SMB-Session-Spoofing
  ☆118Updated last year
• daem0nc0re / Abusing_Weak_ACL_on_Certificate_Templates
  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
  ☆119Updated 3 years ago
• NVISOsecurity / pyCobaltHound
  pyCobaltHound is an Aggressor script extension for Cobalt Strike which aims to provide a deep integration between Cobalt Strike and Blood…
  ☆134Updated last year
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆166Updated last year
• winsecurity / Offensive-C-Sharp
  ☆160Updated 2 years ago
• bitsadmin / chophound
  Some scripts to support with importing large datasets into BloodHound
  ☆76Updated 11 months ago
• xpn / sccmwtf
  ☆143Updated last year
• Flangvik / SharpExfiltrate
  Modular C# framework to exfiltrate loot over secure and trusted channels.
  ☆120Updated 3 years ago
• MythicAgents / Athena
  ☆175Updated this week
• Cobalt-Strike / ElevateKit
  The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
  ☆108Updated 4 years ago
• o1mate / AppLocker-Bypass
  Bypassing AppLocker with C#
  ☆136Updated 3 years ago
• fozavci / WeaponisingCSharp-Fundamentals
  Weaponising C# - Fundamentals Training Content
  ☆71Updated 3 years ago
• SpecterOps / presentations
  SpecterOps Presentations
  ☆178Updated 3 months ago
• bohops / DynamicDotNet
  A collection of various and sundry code snippets that leverage .NET dynamic tradecraft
  ☆134Updated 5 months ago
• nettitude / ETWHash
  C# POC to extract NetNTLMv1/v2 hashes from ETW provider
  ☆250Updated last year
• Octoberfest7 / Presentations
  Slide decks and/or materials from conference presentations
  ☆54Updated last year
• VirtualAlllocEx / Payload-Download-Cradles
  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …
  ☆258Updated 2 years ago
• powerseb / PowerExtract
  ☆112Updated last year
• Dramelac / GoldenCopy
  Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.
  ☆79Updated 6 months ago
• trustedsec / CrackHound
  ☆133Updated last year
• t3hbb / DefenderCheck
  Identifies the bytes that Microsoft Defender flags on.
  ☆75Updated 2 years ago
• jfmaes / AmsiHooker
  Hookers are cooler than patches.
  ☆166Updated 2 years ago
• nettitude / MalSCCM
  ☆241Updated last year
• rvrsh3ll / Azure-App-Tools
  Collection of tools to use with Azure Applications
  ☆107Updated last year