WithSecureLabs / RemotePSpy
RemotePSpy provides live monitoring of remote PowerShell sessions, which is particularly useful for older (pre-5.0) versions of PowerShell which do not have comprehensive logging facilities built in.
☆18Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for RemotePSpy
- ☆24Updated 6 years ago
- Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.☆41Updated 5 years ago
- Bash one-liner that will parse harmj0y's SharpRoast or Rebeus kerberoast into hashcat crack-able format.☆32Updated 5 years ago
- ☆26Updated 6 years ago
- Set of ultra technical notes about AD☆18Updated 6 years ago
- ☆39Updated 6 years ago
- Obtains a crackable hash for the current user account☆22Updated 5 years ago
- Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test …☆57Updated 5 years ago
- A cross platform tool for verifying credentials and executing single commands☆32Updated 5 years ago
- .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems☆32Updated 4 years ago
- ☆21Updated 6 years ago
- RID Hijacking Proof of Concept script by Kevin Joyce☆15Updated 6 years ago
- Extracts Azure authentication tokens from PowerShell process minidumps.☆23Updated last year
- The project is called GreatSCT (Great Scott). GreatSCT is an open source project to generate application white list bypasses. This tool i…☆28Updated 6 years ago
- A PowerShell script to prevent Sysmon from writing its events☆14Updated 4 years ago
- BlueKeep powershell scanner (based on c# code)☆38Updated 4 years ago
- ☆37Updated 6 years ago
- Walking the PEB in VBA☆22Updated 4 years ago
- ☆30Updated 6 years ago
- Microsoft Applocker evasion tool☆38Updated 4 years ago
- Detecting PowerShell Empire, Metasploit Meterpreter and Cobalt Strike agents by payload size sequence analysis and host correlation☆16Updated 6 years ago
- Generate Mimikatz Golden Ticket commands with ease!☆51Updated 3 years ago
- A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…☆19Updated 3 years ago
- simple demo of using C# & System.Management.Automation.dll to run powershell code (b64 encoded) without powershell.exe☆13Updated 7 years ago
- Protect your servers with a secret header☆28Updated 4 years ago
- Easily serve HTTP and DNS keys for proper payload protection☆60Updated 6 years ago
- Convert Empire profiles to Apache mod_rewrite scripts☆27Updated 5 years ago