Nariod / laz-y
Automating payload generation for OSEP labs and exam.
☆34Updated 2 years ago
Alternatives and similar repositories for laz-y:
Users that are interested in laz-y are comparing it to the libraries listed below
- this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…☆85Updated 2 years ago
- Active Directory certificate abuse.☆37Updated 3 years ago
- A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket☆54Updated 4 years ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆54Updated 3 years ago
- Secretsdump C# version only supporting local (live) operation☆49Updated last year
- Bypass AMSI via PowerShell by splitting a file into multiple chunks☆50Updated 3 years ago
- ☆48Updated 2 years ago
- AutoStart teamserver and listeners with services☆72Updated 3 years ago
- ☆88Updated 2 years ago
- ☆139Updated 2 years ago
- ☆79Updated last year
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆91Updated 2 years ago
- Cobalt Strike BOF for quser.exe implementation using Windows API☆83Updated 2 years ago
- Read the contents of MS Word Documents using Cobalt Strike's Execute-Assembly☆118Updated 5 months ago
- ☆62Updated 2 years ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 2 years ago
- ☆28Updated 2 years ago
- ☆55Updated 11 months ago
- C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD…☆39Updated last year
- Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3☆51Updated 2 years ago
- A BOF port of the research of @thefLinkk and @codewhitesec☆98Updated 3 years ago
- ☆29Updated 2 years ago
- C# Port of LdapRelayScan☆80Updated 3 years ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 2 years ago
- Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.☆52Updated 3 years ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 2 years ago
- CNA that interacts with a JAR file to dynamically rename GUI tabs within Cobalt Strike from a JSON file.☆23Updated 2 years ago
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆108Updated 2 years ago
- Unchain AMSI by patching the provider’s unmonitored memory space☆90Updated 2 years ago
- ☆56Updated 4 years ago