Shadow0ps / solorigate_sample_sourceLinks
Decompile of the Solorwinds "SUNBURST" Trojan associated with Campaign UNC2452 This is the SolarWinds.Orion.Core.BusinessLayer.dll file from the v2019.4.5220-Hotfix5.msp Patch
☆44Updated 5 years ago
Alternatives and similar repositories for solorigate_sample_source
Users that are interested in solorigate_sample_source are comparing it to the libraries listed below
Sorting:
- The following repository contains a modified version of SUNBURST with cracekd hashes, comments and annotations.☆56Updated 5 years ago
- RDP honeypot☆68Updated 6 years ago
- A sample of proof of concept scripts that run Calc.exe with full source code.☆97Updated last year
- ☆62Updated 5 years ago
- ☆60Updated 5 years ago
- Just a normal flask web app to understand win32api with code snippets and references.☆75Updated 6 years ago
- Documentation and supporting script sample for Windows Exploit Guard☆169Updated 4 months ago
- ☆138Updated 2 months ago
- A simple python implementation of a BITS server.☆105Updated 3 years ago
- Silencing Sysmon via driver unload☆235Updated 3 years ago
- A summary about different projects/presentations/tools to test how to evade malware sandbox systems☆55Updated 7 years ago
- A repository of some of my Windows 10 Device Guard Bypasses☆139Updated 8 years ago
- Zombie Ant Farm: Primitives and Offensive Tooling for Linux EDR evasion.☆227Updated 6 years ago
- A tool for detecting VBA stomping.☆101Updated 3 years ago
- a tool to make it easy and fast to test various forms of injection☆173Updated 6 years ago
- Pure Python parser for Application Compatibility Shim Databases (.sdb files)☆109Updated 5 years ago
- Static based decoders for malware samples☆94Updated 5 years ago
- ☆59Updated 5 years ago
- ☆64Updated last year
- DLL Password Filter Implant with Exfiltration Capabilities☆138Updated 5 years ago
- Enumerate Windows Defender threat families and dump their names according category☆93Updated 6 years ago
- Carve files for MFT entries (eg. blkls output or memory dumps). Recovers filenames (long & short), timestamps ($STD & $FN) and data if re…☆22Updated 6 years ago
- An advanced memory forensics framework☆96Updated 6 years ago
- Windows Shortcut file (LNK) parser☆137Updated 3 years ago
- A tool to exploit .NET DCOM for EoP and RCE. Is fixed in latest versions of the .NET.☆92Updated 11 years ago
- The content of this repository aims to assist efforts on analysing inner working principles, functionalities, and properties of the Micro…☆150Updated 5 years ago
- A tool for de-obfuscating PowerShell scripts☆71Updated 6 years ago
- ☆220Updated 7 years ago
- A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…☆45Updated 4 years ago
- ☆73Updated 2 years ago