Mr-Un1k0d3r / Windows-SignedBinary
☆238Updated 6 years ago
Alternatives and similar repositories for Windows-SignedBinary:
Users that are interested in Windows-SignedBinary are comparing it to the libraries listed below
- Evading WinDefender ATP credential-theft☆254Updated 5 years ago
- lateral movement techniques that can be used during red team exercises☆269Updated 5 years ago
- GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects☆247Updated 4 years ago
- Collection of awesome Cobalt Strike Aggressor Scripts. All credit due to the authors☆151Updated 6 years ago
- Custom Metasploit post module to executing a .NET Assembly from Meterpreter session☆343Updated 4 years ago
- DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.☆254Updated 6 years ago
- Lateral Movement technique using DCOM and HTA☆231Updated 2 years ago
- Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.☆201Updated 7 years ago
- DLL Generator for side loading attack☆170Updated 6 years ago
- Shellcoding utilities☆221Updated 4 years ago
- Scripts for performing and detecting parent PID spoofing☆143Updated 4 years ago
- The project is designed as a file resource cloner. Metadata, including digital signature, is extracted from one file and injected into a…☆340Updated 3 months ago
- Quick Malicious ClickOnceGenerator for Red Team☆251Updated 4 years ago
- Apply a filter to the events being reported by windows event logging☆261Updated 3 years ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆168Updated 4 years ago
- Create a minidump of the LSASS process from memory☆256Updated 2 years ago
- Recon-AD, an AD recon tool based on ADSI and reflective DLL’s☆322Updated 5 years ago
- ☆78Updated 8 years ago
- Neutering Sysmon via driver unload☆225Updated 2 years ago
- SPF are not as strong as you may think. Red Team tool to send email on behalf of your target corp☆136Updated 3 years ago
- Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().☆214Updated 4 years ago
- Elite is the client-side component of the Covenant project. Covenant is a .NET command and control framework that aims to highlight the a…☆120Updated last year
- Assorted scripts and one off things☆263Updated 6 months ago
- Example DLL to load from Windows NetShell☆176Updated 8 years ago
- Automated script for setting up CobaltStrike redirectors (nginx reverse proxy, letsencrypt)☆142Updated 7 years ago
- Tools for discovery and abuse of COM hijacks☆300Updated 5 years ago
- A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…☆267Updated last year
- A library for integrating communication channels with the Cobalt Strike External C2 server☆283Updated 7 years ago
- Python script that takes new output from Get-DomainTrustMapping .csvs and outputs graphml. Based on DomainTrustExplorer.☆94Updated last year
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆377Updated 5 years ago