GhostPack / KohLinks
The Token Stealer
☆501Updated 3 years ago
Alternatives and similar repositories for Koh
Users that are interested in Koh are comparing it to the libraries listed below
Sorting:
- ☆344Updated 4 years ago
- Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …☆747Updated 2 years ago
- FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads☆385Updated 3 years ago
- ☆413Updated last year
- A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…☆474Updated 2 years ago
- NTLM relaying for Windows made easy☆572Updated 2 years ago
- Stop Defender Service using C# via Token Impersonation☆170Updated 3 years ago
- .NET project for installing Persistence☆486Updated last year
- A User Impersonation tool - via Token or Shellcode injection☆420Updated 3 years ago
- .NET/PowerShell/VBA Offensive Security Obfuscator☆506Updated last year
- Lifetime AMSI bypass☆644Updated last year
- Proof-of-concept obfuscation toolkit for C# post-exploitation tools☆571Updated 3 years ago
- Convert shellcode into different formats!☆357Updated 2 years ago
- A unique technique to execute binaries from a password protected zip☆1,033Updated 3 years ago
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆1,010Updated last year
- A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) wit…☆561Updated 7 months ago
- it is very good☆518Updated 2 years ago
- Collection of C# projects. Useful for pentesting and redteaming.☆316Updated last year
- XLL Phishing Tradecraft☆424Updated 3 years ago
- Create fake certs for binaries using windows binaries and the power of bat files☆568Updated last year
- ☆469Updated 10 months ago
- A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.☆462Updated last year
- WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations☆367Updated 4 years ago
- A proof-of-concept Remote Desktop (RDP) session hijack utility☆492Updated 9 months ago
- An other No-Fix LPE, NTLMRelay2Self over HTTP (Webdav).☆415Updated last year
- A simple python packer to easily bypass Windows Defender☆645Updated 3 years ago
- ☆391Updated 4 months ago
- A standalone DLL that exports databases in cleartext once injected in the KeePass process.☆299Updated 2 years ago
- JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.☆309Updated last year
- Manipulating and Abusing Windows Access Tokens.☆281Updated 4 years ago