WithSecureLabs / RemotePSpy
RemotePSpy provides live monitoring of remote PowerShell sessions, which is particularly useful for older (pre-5.0) versions of PowerShell which do not have comprehensive logging facilities built in.
☆18Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for RemotePSpy
- Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.☆41Updated 6 years ago
- ☆24Updated 6 years ago
- ☆21Updated 6 years ago
- Bash one-liner that will parse harmj0y's SharpRoast or Rebeus kerberoast into hashcat crack-able format.☆32Updated 5 years ago
- RID Hijacking Proof of Concept script by Kevin Joyce☆15Updated 6 years ago
- Set of ultra technical notes about AD☆18Updated 6 years ago
- ☆37Updated 6 years ago
- A PowerShell script to parse the docx/docm file format and update the template location.☆17Updated 5 years ago
- Convert Empire profiles to Apache mod_rewrite scripts☆27Updated 5 years ago
- A PowerShell script to prevent Sysmon from writing its events☆14Updated 4 years ago
- ☆26Updated 6 years ago
- Forked and updated with some additional features over the original☆16Updated 3 years ago
- A cross platform tool for verifying credentials and executing single commands☆32Updated 5 years ago
- Microsoft Applocker evasion tool☆38Updated 4 years ago
- Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)☆25Updated 4 years ago
- Extracts Azure authentication tokens from PowerShell process minidumps.☆23Updated last year
- A C# tool to send emails through Outlook from the command line or in memory☆27Updated 4 years ago
- .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems☆32Updated 4 years ago
- ☆16Updated 4 years ago
- Powershell script which will take any payload and put it in the a bat script which delivers the payload. The payload is delivered using e…☆52Updated 7 months ago
- Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test …☆57Updated 5 years ago
- Remote process dumping automation. Use it to dump Windows credentials remotely and extract clear text with Mimikatz offline☆35Updated 4 years ago
- Bash script to take the powerkatz.dll files, encode them using base64 and then replace the old binaries with the new in the Invoke-Mimika…☆16Updated 8 years ago
- Random source codes☆25Updated 4 years ago
- ☆12Updated 6 years ago
- ☆39Updated 6 years ago
- ☆12Updated 5 years ago