Inf0secRabbit / MiniDumpSnapshot

Related projects ⓘ

Alternatives and complementary repositories for MiniDumpSnapshot

• netbiosX / GhostLoader
  GhostLoader - AppDomainManager - Injection - 攻壳机动队
  ☆51Updated 4 years ago
• rvrsh3ll / RuralBishop
  D/Invoke port of UrbanBishop
  ☆29Updated 3 years ago
• EspressoCake / Cobalt_Strike_Ansible
  A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.
  ☆33Updated 3 years ago
• EspressoCake / Process_Protection_Level_BOF
  ☆51Updated 3 years ago
• Allevon412 / BreadBear
  A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/
  ☆30Updated 8 months ago
• jfmaes / DeepSleep
  all credits go to @mgeeky
  ☆58Updated 3 years ago
• thalpius / Microsoft-Defender-for-Identity-Encrypted-Password
  ☆35Updated 5 months ago
• S3cur3Th1sSh1t / SharpOxidResolver
  IOXIDResolver from AirBus Security/PingCastle
  ☆45Updated 3 years ago
• djhohnstein / HookDetector
  Playing with PE's and Building Structures by Hand
  ☆22Updated 2 years ago
• thesnoom / extps-cobalt-strike-bof
  Extended Process List (Search functionality)
  ☆27Updated 3 years ago
• T4TCH3R / RedditC2
  Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic lo…
  ☆25Updated last year
• C0axx / Modified-Thycotic-Secret-Stealer
  Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption
  ☆18Updated 2 years ago
• KINGSABRI / DotNetToJScriptMini
  A simplified version of DotNetToJScript to create a JScript file which loads a .NET v2 assembly from memory.
  ☆47Updated 3 years ago
• dis0rder0x00 / CanYouCTheThief
  A C implementation of the Sektor7 "A Thief" Windows privesc technique.
  ☆61Updated 2 years ago
• xforcered / xPipe
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆50Updated 2 years ago
• joeminicucci / RedIra
  A cloud automation system for Red Teams based on Terraform and Ansible
  ☆24Updated 3 years ago
• xforcered / CheckCert
  Obtain and parse SSL certificates
  ☆9Updated 2 years ago
• EspressoCake / Firewall_Walker_BOF
  A BOF to interact with COM objects associated with the Windows software firewall.
  ☆100Updated 3 years ago
• jfmaes / Clippi-B
  ☆35Updated 4 years ago
• threatexpress / mythic2modrewrite
  Generate Apache mod_rewrite rules for Mythic C2 profiles
  ☆26Updated 3 years ago
• MythicAgents / atlas
  ☆13Updated 10 months ago
• Octoberfest7 / Proxy_Egress_Persistence
  A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
  ☆32Updated 2 years ago
• nettitude / SyscallsExtractor
  ☆23Updated 2 years ago
• Adepts-Of-0xCC / MiniDumpWriteDumpPoC
  MiniDumpWriteDump behavior modification hook
  ☆49Updated 3 years ago
• N4kedTurtle / LocalDllParse
  ☆54Updated 3 years ago
• kafkaesqu3 / SharpStomp
  Timestomping module: overwrite file create/modify times in .NET (no pinvoke)
  ☆22Updated 2 years ago
• inb1ts / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆38Updated last year
• zimawhit3 / DynimicGhostWriting
  Windows x64 Process Injection via Ghostwriting with Dynamic Configuration
  ☆27Updated 3 years ago