Wh04m1001 / SysmonEoPLinks
☆185Updated 2 years ago
Alternatives and similar repositories for SysmonEoP
Users that are interested in SysmonEoP are comparing it to the libraries listed below
Sorting:
- ☆161Updated 2 years ago
- A basic emulation of an "RPC Backdoor"☆243Updated 3 years ago
- ☆113Updated 3 years ago
- Reuse open handles to dynamically dump LSASS.☆245Updated last year
- POC tools for exploring SMB over QUIC protocol☆128Updated 3 years ago
- ☆88Updated 3 years ago
- Weaponized HellsGate/SigFlip☆203Updated 2 years ago
- Github as C2 Demonstration , free API = free C2 Infrastructure☆141Updated 2 years ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆258Updated 2 years ago
- A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.☆301Updated 2 years ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section☆106Updated 2 years ago
- A tool for converting SysWhispers3 syscalls for use with Nim projects☆147Updated 3 years ago
- ☆170Updated last year
- Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.☆123Updated 3 years ago
- Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.☆149Updated 3 years ago
- ☆234Updated 2 years ago
- WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"☆119Updated last year
- AV/EDR evasion via direct system calls.☆108Updated last year
- ☆222Updated last year
- Lateral Movement Using DCOM and DLL Hijacking☆317Updated 2 years ago
- Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS☆189Updated 3 years ago
- Repository contains psexec, which will help to exploit the forgotten pipe☆171Updated 11 months ago
- ☆92Updated 2 years ago
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆336Updated last year
- ☆248Updated 2 years ago
- Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting☆359Updated 2 years ago
- A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.☆131Updated 2 years ago
- DLL Hijack Search Order Enumeration BOF☆152Updated 3 years ago
- Hookers are cooler than patches.☆170Updated 3 years ago
- Patching AmsiOpenSession by forcing an error branching☆148Updated 2 years ago