Leo4j / Invoke-ShareHunter

Related projects: ⓘ

• EvilBytecode / Lifetime-AmsiBypass
  Lifetime AMSI bypass.
  ☆35Updated 2 months ago
• scottctaylor12 / Red-Lambda
  Leveraging AWS Lambda Function URLs for C2 Redirection
  ☆22Updated last year
• whokilleddb / SOAPHound
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆32Updated 3 months ago
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆39Updated 2 months ago
• assume-breach / Helpful-Scripts
  A repo of scripts I find helpful for daily tasks.
  ☆26Updated 4 months ago
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆54Updated 3 months ago
• Yeeb1 / SharpLansweeperDecrypt
  Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.
  ☆34Updated 6 months ago
• Leo4j / KeyCredentialLink
  Add Shadow Credentials to a target object by editing their msDS-KeyCredentialLink attribute
  ☆19Updated 3 months ago
• nettitude / SharpConflux
  ☆63Updated 6 months ago
• eversinc33 / CredGuess
  Generate password spraying lists based on the pwdLastSet-attribute of users.
  ☆53Updated 9 months ago
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆71Updated 5 months ago
• RedSiege / RandomScripts
  Scripts for public use that we've randomly written, or have updated from other people's work.
  ☆38Updated 2 months ago
• JumpsecLabs / WALK_WebAssembly_Lure_Krafter
  A web assembly (WASM) phishing lure generator based on pre-built templates and written in Rust with some GenAI assistance. W.A.L.K. aims …
  ☆54Updated 2 weeks ago
• weaselsec / ClickOnce-AppDomain-Manager-Injection
  Click Once + App Domain
  ☆61Updated 9 months ago
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆53Updated 2 years ago
• myexploit / living_off_the_land
  ☆42Updated 2 months ago
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆60Updated last year
• 4ndr34z / prenum
  ☆23Updated last year
• redskal / SharpAzbelt
  .NET port of Leron Gray's azbelt tool.
  ☆26Updated 11 months ago
• n0tspam / RunspaceLoader
  Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe
  ☆13Updated 9 months ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆79Updated 2 months ago
• RedSiege / Chromatophore
  Utilities for obfuscating shellcode
  ☆38Updated 2 months ago
• RedTeamOperations / Red-Infra-Craft
  RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create adv…
  ☆47Updated 3 weeks ago
• rasta-mouse / SpawnWith
  ☆90Updated 6 months ago
• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆23Updated 6 months ago
• Bl4ckM1rror / PEAs
  ☆57Updated 9 months ago
• emiliensocchi / azurehound-queries
  🌩️ Collection of BloodHound queries for Azure
  ☆40Updated last month
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆38Updated 3 months ago
• 0xe7 / RoastInTheMiddle
  ☆69Updated 10 months ago
• nickvourd / GetWebDAVStatus
  Determine if the WebClient Service (WebDAV) is running on a remote system
  ☆15Updated 6 months ago