OmriBaso / RToolZLinks
A Stealthy Lsass Dumper - can abuse ProcExp152.sys driver to dump PPL Lsass, no dbghelp.lib calls.
☆324Updated 2 years ago
Alternatives and similar repositories for RToolZ
Users that are interested in RToolZ are comparing it to the libraries listed below
Sorting:
- COM Hijacking VOODOO☆301Updated 4 months ago
- Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime☆306Updated 2 years ago
- Dump the memory of any PPL with a Userland exploit chain☆337Updated 2 years ago
- A BOF to automate common persistence tasks for red teamers☆284Updated 2 years ago
- Patch AMSI and ETW☆242Updated last year
- A new AMSI Bypass technique using .NET ALI Call Hooking.☆192Updated 2 years ago
- You shall pass☆263Updated 3 years ago
- Beacon Object File Loader☆287Updated last year
- COFF file (BOF) for managing Kerberos tickets.☆304Updated 2 years ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider