KnicKnic / native-powershellLinks
A C DLL that can control powershell
☆45Updated 5 years ago
Alternatives and similar repositories for native-powershell
Users that are interested in native-powershell are comparing it to the libraries listed below
Sorting:
- Info on how to use Kerberos KDC on a non-domain joined host☆47Updated 10 months ago
- Windows Detour Hooking in PowerShell☆81Updated 11 months ago
- ☆28Updated 2 years ago
- Example of building an application verifer DLL☆46Updated last year
- A C# implementation of dumping credentials from Windows Credential Manager☆59Updated last year
- a tiny program to consume from ETW providers for research☆48Updated 5 months ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆76Updated last month
- A persistant Windows Service Proof of Concept, where the Service will run after Restart or Shutdown, and invoke a given software executab…☆38Updated last year
- Youtube channel sample code☆49Updated this week
- AppContainer tools for launching sandboxed win32 apps, changing ACL permissions and learning from ETW traces.☆21Updated last month
- Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE☆65Updated 2 years ago
- Auditing Hooks for https://github.com/jborean93/PSDetour☆13Updated last month
- ☆12Updated 10 months ago
- Small tool to play with IOCs caused by Imageload events☆42Updated 2 years ago
- Reflective DLL that hooks the creation of the UAC prompt popped by explorer.exe for privilege escalation.☆21Updated 4 years ago
- Runs programs as TrustedInstaller☆49Updated 5 years ago
- Create file system symbolic links from low privileged user accounts within PowerShell☆93Updated 2 years ago
- List the ETW provider(s) in the registration table of a process.☆59Updated last year
- ☆45Updated last year
- ☆39Updated 2 years ago
- API Set Viewer☆89Updated 4 months ago
- A C# port of the MinHook API hooking library☆55Updated 2 years ago
- ☆82Updated 9 months ago
- PowerShell PE Parser☆63Updated 11 months ago
- Test AMSI Provider implementation in C#☆41Updated 5 months ago
- P/Invoke definitions from the most-of-the-time offline offline pinvoke.net. Website: https://ricardojoserf.gitbook.io/pinvoke☆23Updated 2 months ago
- Simple and sane cryptographic wrapper library.☆27Updated 2 years ago
- example using NtCreateUserProcess in rust☆19Updated 4 months ago
- Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post☆124Updated 2 years ago
- A tunneling toolkit enabling operators to move data from one place to another evasively.☆60Updated 2 weeks ago