Decrypt SCCM and DPAPI secrets with Powershell.
☆47Jun 24, 2025Updated 11 months ago
Alternatives and similar repositories for Invoke-PowerDPAPI
Users that are interested in Invoke-PowerDPAPI are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A PowerShell script designed to detect misconfigured Azure Storage Accounts that could potentially be exploited for privilege escalation …☆13Apr 25, 2024Updated 2 years ago
- Tool to bypass LSA Protection (aka Protected Process Light)☆64Jan 2, 2025Updated last year
- GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…☆36Nov 24, 2024Updated last year
- Impersonate Windows tokens in Nim☆23Aug 4, 2025Updated 10 months ago
- Hooked create process injection for meterpreter☆23Jun 16, 2021Updated 4 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Remote DLL Injection with Timer-based Shellcode Execution☆214Jul 18, 2025Updated 10 months ago
- Recon scripts for Red Team and Web blackbox auditing☆25Mar 3, 2026Updated 3 months ago
- 学习笔记☆13Mar 4, 2022Updated 4 years ago
- Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.☆39Jan 2, 2025Updated last year
- Powershell and python utilties for Entra Connect☆29Jun 5, 2025Updated last year
- TokenCert☆103Nov 15, 2024Updated last year
- Impacket pre-compiled binaries☆20Jul 31, 2023Updated 2 years ago
- Some papers and exploit writeups about WebKit.☆21Feb 18, 2024Updated 2 years ago
- ☆31May 16, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Azure AiTM Function PoC to phish Entra ID Credentials☆29Nov 21, 2025Updated 6 months ago
- Step-by-step documentation on how to decrypt SCCM database secrets offline☆50Oct 20, 2025Updated 7 months ago
- Add Shadow Credentials to a target object by editing their msDS-KeyCredentialLink attribute☆25Jun 5, 2024Updated 2 years ago
- ☆128Jun 17, 2025Updated 11 months ago
- Remap ntdll.dll using only NTAPI functions with a suspended process☆28Apr 13, 2025Updated last year
- ☆46Feb 6, 2025Updated last year
- ☆91Jul 28, 2022Updated 3 years ago
- Store my 'Useful Commands' for HTB/OSCP and additional notes from my Obisidan. Merge into Obsidian for direct formatting. Also check out …☆16Aug 16, 2023Updated 2 years ago
- ☆81Apr 9, 2024Updated 2 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Bounces when a fish bites - Evilginx database monitoring with exfiltration automation☆185Jun 9, 2024Updated last year
- Creation and removal of Defender path exclusions and exceptions in C#.☆32Nov 1, 2023Updated 2 years ago
- A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering☆43Jun 10, 2025Updated 11 months ago
- Simple pure PowerShell POC to bypass Entra / Intune Compliance Conditional Access Policy☆170Nov 17, 2025Updated 6 months ago
- Bash and ZSH integration for Impacket�☆74Nov 6, 2025Updated 7 months ago
- Tartocitron is a repo to have fun with malwares and the Rust language. This repo provides working examples of dropper written in Rust.☆11May 31, 2022Updated 4 years ago
- ☆14Sep 26, 2023Updated 2 years ago
- A Python POC for CRED1 over SOCKS5☆171Oct 5, 2024Updated last year
- Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel☆64Apr 13, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- A fucking real shellcode loader with a GUI. Work-in-Progress.☆81Jun 25, 2025Updated 11 months ago
- Impersonate Tokens using only NTAPI functions☆85Apr 4, 2025Updated last year
- adws enumeration bof☆172Feb 16, 2026Updated 3 months ago
- Advanced shellcode injector for images supports BMP, GIF, EXIF (JPEG), and LSB (PNG) techniques. Includes XOR encoding, offset indexing, …☆26Jun 11, 2025Updated 11 months ago
- CLI monitor for windows process- & file activity☆97Nov 20, 2020Updated 5 years ago
- ☆50Dec 5, 2025Updated 6 months ago
- tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it☆135Aug 23, 2025Updated 9 months ago