Mr-Un1k0d3r / Cookie-and-Handle-StealerLinks
C or BOF file to extract WebKit master key to decrypt user cookie
☆204Updated last year
Alternatives and similar repositories for Cookie-and-Handle-Stealer
Users that are interested in Cookie-and-Handle-Stealer are comparing it to the libraries listed below
Sorting:
- reflectively load and execute PEs locally and remotely bypassing EDR hooks☆160Updated last year
- CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking☆279Updated 2 years ago
- ☆100Updated 2 years ago
- Library of BOFs to interact with SQL servers☆203Updated last month
- Extracting NetNTLM without touching lsass.exe☆239Updated last year
- My implementation of the GIUDA project in C++☆186Updated 2 years ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆207Updated 11 months ago
- Havoc C2 profile generator☆94Updated 2 months ago
- Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique☆156Updated last year
- GregsBestFriend process injection code created from the White Knight Labs Offensive Development course☆196Updated 2 years ago
- Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.☆252Updated 2 years ago
- ☆123Updated last year
- ☆158Updated 2 years ago
- ☆247Updated 2 years ago
- ☆119Updated 5 months ago
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆141Updated 5 months ago
- Terminate AV/EDR leveraging BYOVD attack☆102Updated 6 months ago
- ☆170Updated last year
- ☆193Updated last year
- Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.☆121Updated 3 years ago
- Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.☆173Updated 6 months ago
- Evasive Golang Loader☆135Updated last year
- ☆119Updated 7 months ago
- Port of Cobalt Strike's Process Inject Kit☆184Updated 9 months ago
- Source generator to add D/Invoke and indirect syscall methods to a C# project.☆183Updated last year
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆258Updated 2 years ago
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints☆114Updated 2 months ago
- Lateral Movement Using DCOM and DLL Hijacking☆309Updated 2 years ago
- ☆192Updated 5 months ago
- Patching AmsiOpenSession by forcing an error branching☆148Updated 2 years ago