Alternatives and similar repositories for RIDHijackingProofofConceptKJ:

Users that are interested in RIDHijackingProofofConceptKJ are comparing it to the libraries listed below

• G0ldenGunSec / wmiServSessEnum
  .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems
  ☆33Updated 5 years ago
• LaresLLC / AzureTokenExtractor
  Extracts Azure authentication tokens from PowerShell process minidumps.
  ☆23Updated last year
• two06 / EvtMute
  Apply a filter to the events being reported by windows event logging
  ☆15Updated 4 years ago
• tevora-threat / c2_reporter
  Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials
  ☆20Updated 4 years ago
• ThunderGunExpress / ThunderMSI
  ☆28Updated 7 years ago
• NVISOsecurity / FileSearcher
  ☆24Updated 4 years ago
• infosecn1nja / e2modrewrite
  Convert Empire profiles to Apache mod_rewrite scripts
  ☆27Updated 5 years ago
• rmdavy / AmsiPEBWalkVBA
  Walking the PEB in VBA
  ☆23Updated 5 years ago
• stufus / shellcode-implant-stub
  Source code in Win32 ASM and C for a shellcode execution wrapper designed to mitigate the risk of shellcode execution on a host other tha…
  ☆19Updated 8 years ago
• NVISOsecurity / cobalt-strike-notifier
  ☆14Updated 3 years ago
• djhohnstein / CSharpCreateThreadExample
  C# code to run PIC using CreateThread
  ☆17Updated 6 years ago
• rvrsh3ll / FlaskRedirectorProtector
  Protect your servers with a secret header
  ☆29Updated 4 years ago
• ConsciousHacker / GreatSCT
  The project is called GreatSCT (Great Scott). GreatSCT is an open source project to generate application white list bypasses. This tool i…
  ☆30Updated 6 years ago
• bitsadmin / cobaltstrike
  Everything related to Cobalt Strike
  ☆15Updated 5 years ago
• rmdavy / AmsiPEBWalkVBAx64
  ☆15Updated 5 years ago
• davehardy20 / PoSHBypass
  ☆25Updated 6 years ago
• bitsadmin / miscellaneous
  Random code snippets
  ☆10Updated last year
• WMSR / utils
  ☆11Updated 4 years ago
• slyd0g / SharpRoast-Parser
  Bash one-liner that will parse harmj0y's SharpRoast or Rebeus kerberoast into hashcat crack-able format.
  ☆32Updated 6 years ago
• trustedsec / inProc_Evade_Get-InjectedThread
  PoC code from blog
  ☆16Updated 5 years ago
• Raikia / SharpStat
  C# utility that uses WMI to run "cmd.exe /c netstat -n", save the output to a file, then use SMB to read and delete the file remotely
  ☆38Updated 5 years ago
• alfarom256 / ExternalC2Go
  ☆16Updated 5 years ago
• Tw1sm / nessporter
  Assists in mass exportation of Nessus scans
  ☆20Updated 7 years ago
• fozavci / ransoblin
  Ransoblin (Ransomware Bokoblin)
  ☆18Updated 4 years ago
• NotoriousRebel / ConfigPersist
  Modifies machine.config for persistence after installing signed .net assembly onto GAC
  ☆13Updated 3 years ago
• S3cur3Th1sSh1t / TeamViewerDecrypt
  ☆17Updated 5 years ago
• rvrsh3ll / RuralBishop
  D/Invoke port of UrbanBishop
  ☆29Updated 4 years ago
• FuzzySecurity / DotNetToJScript-LanguageModeBreakout
  ☆26Updated 6 years ago
• xenoscr / SharpMailBOF
  A BOF.NET program to split a file into smaller chunks and email it via a specified SMTP relay.
  ☆15Updated 3 years ago
• bohops / IISAppPoolCreds
  Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.
  ☆14Updated 7 years ago