Like0x / SharpBlock
A method of bypassing EDR's active projection DLL's by preventing entry point exection
☆22Updated 3 years ago
Alternatives and similar repositories for SharpBlock:
Users that are interested in SharpBlock are comparing it to the libraries listed below
- PortBender修改为exe版本☆24Updated last year
- Search msDS-AllowedToActOnBehalfOfOtherIdentity☆35Updated 3 years ago
- Python3 script to quickly get various information from a domain controller through his LDAP service.☆14Updated 3 years ago
- 使用Csharp实现自动修改注册表键并强制锁屏,使其可被抓取明文密码。☆30Updated 4 years ago
- Bloodhound 数据解析工具☆21Updated last year
- ☆45Updated 3 years ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user; Adding the sam_the_admin_maq when MachineAccoun…☆23Updated 8 months ago
- 通过OXID解析器获取Windows远程主机上网卡地址☆23Updated 2 years ago
- 通过websocket在IIS8(Windows Server 2012)以上实现socks5代理☆86Updated last year
- ☆49Updated last year
- 利用RPC服务,内网批量探测Windows出网☆14Updated 2 years ago
- CrackMapExec extension module/protocol support☆42Updated last year
- c/s网络准入平台☆20Updated 2 years ago
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆41Updated last year
- 密码收集☆58Updated 2 years ago
- ☆21Updated last year
- query specific user and login IP from remote machine☆17Updated 2 years ago
- command execute without 445 port☆52Updated 2 years ago
- ☆15Updated last year
- druid数据库密码解密☆31Updated last year
- a 'pentest' udf plugin of MySQL.☆34Updated 2 years ago
- AddDefenderExclusions Beacon Object File☆34Updated last year
- 在权限足够的情况下弹出system权限的cmd命令行,包含exe和dll两种文件类型,可用于一些可能存在本地提权漏洞的测试。☆33Updated 2 years ago
- ☆34Updated 3 years ago
- Lsass memory dump.☆52Updated last year
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆71Updated last year
- ☆19Updated last year
- 利用EFSRPC协议批量探测出网☆65Updated last year
- 重构Beacon☆14Updated 5 months ago
- dump lsass☆37Updated 2 years ago