Small Script that permits to enumerate folders in Windows Defender Exclusion List with no Administrative privileges
☆27Nov 20, 2024Updated last year
Alternatives and similar repositories for WinDefExclusionFinder
Users that are interested in WinDefExclusionFinder are comparing it to the libraries listed below
Sorting:
- an Improoved Version of 0xNinjaCyclone´s EarlyCascade Code☆22Feb 20, 2025Updated last year
- Bruteforce DPAPI encrypted MasterKey File from Windows Credentials Manager☆23Jan 4, 2025Updated last year
- ☆14Jul 26, 2025Updated 7 months ago
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆61May 12, 2025Updated 9 months ago
- Extract WinSCP Credentials from any Windows System or winscp config file☆22Jul 10, 2025Updated 7 months ago
- ☆36Nov 26, 2024Updated last year
- .NET tool used to enrich RPC telemetry☆101Jan 24, 2026Updated last month
- Exfiltrate files using the HTTP protocol version ("HTTP/1.0" is a 0 and "HTTP/1.1" is a 1)☆24Oct 23, 2021Updated 4 years ago
- How to bypass AMSI (Antimalware Scan Interface) in PowerShell/C++ by dynamically patching the AmsiScanBuffer function.☆25Apr 21, 2025Updated 10 months ago
- Toolkit of Projects to attack and evade Event Trace for Windows☆26Aug 28, 2025Updated 6 months ago
- A Multilayered AV/EDR Evasion Framework and AV Testing Tool.☆18Jun 28, 2025Updated 8 months ago
- Proof-of-Concept for Authorization Bypass in Next.js Middleware☆19Mar 23, 2025Updated 11 months ago
- ☆17May 7, 2025Updated 9 months ago
- Охотник (Hunter) is a simple Adversary Simulation tool developed for achieves stealth through API unhooking, direct and indirect syscalls…☆93Apr 23, 2025Updated 10 months ago
- NailaoLoader: Hiding Execution Flow via Patching☆22Feb 27, 2025Updated last year
- .Net Assembly loader for the GMSAPasswordReader☆17Feb 15, 2023Updated 3 years ago
- A cross-platform tool to parse and describe the contents of a raw ntSecurityDescriptor structure☆47Oct 4, 2025Updated 5 months ago
- ☆26Aug 11, 2025Updated 6 months ago
- SharpCoercer is a .NET 4.8 C# tool that leverages 16 different RPC-based coercion methods to force remote Windows hosts to authenticate t…☆55Jul 13, 2025Updated 7 months ago
- ☆52Jul 8, 2025Updated 7 months ago
- ☆19Aug 26, 2020Updated 5 years ago
- Set of PoC for exploits for QRadar SIEM☆15Jan 14, 2018Updated 8 years ago
- W Generator - A powerful frontend tool for penetration testers to generate customized wordlists based on public user information☆43Apr 25, 2023Updated 2 years ago
- About Recon Tools,Methodology and writeups☆18Dec 16, 2023Updated 2 years ago
- ☆21Apr 30, 2025Updated 10 months ago
- My shellcodes (or shellcodish-things) written for educational purpose in NASM assembly.☆45Jul 23, 2024Updated last year
- Bypasses AMSI protection through remote memory patching and parsing technique.☆54May 12, 2025Updated 9 months ago
- Short handy snippets from the @mwrlabs team☆20Jan 30, 2018Updated 8 years ago
- ☆25Jan 23, 2025Updated last year
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆55Nov 21, 2025Updated 3 months ago
- This repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.☆154Mar 6, 2025Updated 11 months ago
- ☆25Oct 1, 2025Updated 5 months ago
- ☆52Feb 8, 2024Updated 2 years ago
- Post-Ex BOF tooling for Hannibal☆24Nov 20, 2024Updated last year
- Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …☆230Oct 6, 2024Updated last year
- CVE-2025-49144 PoC for security researchers to test and try.☆86Jun 30, 2025Updated 8 months ago
- ☆33Jan 23, 2025Updated last year
- Tool to obtain hash using MS-SNTP for user accounts☆29Jan 22, 2025Updated last year
- AI-powered Windows Event Log analyzer that learns from your feedback. Uses Claude AI with RAG to detect suspicious activity, improve ac…☆36Dec 18, 2025Updated 2 months ago