Retr0-code / hash-dumper
Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already saved SAM and SYSTEM hives.
☆58Updated last year
Alternatives and similar repositories for hash-dumper:
Users that are interested in hash-dumper are comparing it to the libraries listed below
- ☆122Updated 5 months ago
- BOF with Synthetic Stackframe☆108Updated 3 weeks ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆73Updated 6 months ago
- ☆93Updated 5 months ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆68Updated 9 months ago
- Threadless shellcode injection tool☆63Updated 6 months ago
- Mythic C2 Agent written in x64 PIC C☆67Updated 3 weeks ago
- ☆120Updated last year
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints☆73Updated last month
- TypeLib persistence technique☆107Updated 3 months ago
- ☆52Updated last month
- Encode shellcode into dictionary words for evasion and entropy reduction☆23Updated 3 months ago
- ☆115Updated last year
- Construct the payload at runtime using an array of offsets☆61Updated 8 months ago
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆59Updated 11 months ago
- Windows Thread Pool Injection Havoc Implementation☆28Updated 10 months ago
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆82Updated last year
- ☆94Updated last month
- ☆60Updated 8 months ago
- Execute dotnet app from unmanaged process☆70Updated last month
- ☆28Updated 5 months ago
- ☆97Updated last year
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated 11 months ago
- Section-based payload obfuscation technique for x64☆59Updated 6 months ago
- Lateral Movement via the .NET Profiler☆79Updated 2 months ago