A tool to interact with Windows drivers to perform a raw disk read and parse out target files without calling standard Windows file APIs
☆108Sep 4, 2025Updated 9 months ago
Alternatives and similar repositories for raw-disk-parser
Users that are interested in raw-disk-parser are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Two tools written in C that block network traffic for blacklisted EDR processes, using either Windows Defender Firewall (WDF) or Windows …☆268Sep 23, 2025Updated 8 months ago
- ☆45Jul 17, 2025Updated 10 months ago
- Fairy Law - Compromise or disable EDR security solutions☆79Dec 1, 2025Updated 6 months ago
- Dump Teams conversations☆18Jun 9, 2021Updated 4 years ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆75May 1, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A C and Go /proc/pid/maps cloak of invisibilty for shared object files☆22Nov 19, 2025Updated 6 months ago
- A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office3…☆173Jul 31, 2025Updated 10 months ago
- Gain insights into MS-RPC implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By f…☆342May 4, 2026Updated last month
- ☆26Aug 11, 2025Updated 9 months ago
- A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host☆41Dec 8, 2023Updated 2 years ago
- SCEP request tool for AD CS and Intune☆77Oct 24, 2025Updated 7 months ago
- ☆91May 15, 2024Updated 2 years ago
- Fast Windows post-exploitation wins after initial access.☆29Jan 28, 2026Updated 4 months ago
- ☆98Apr 14, 2026Updated last month
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Community Eventing and Scripting examples☆19Aug 11, 2025Updated 9 months ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆32Mar 8, 2025Updated last year
- Group Policy Objects manipulation and exploitation framework☆313Dec 7, 2025Updated 6 months ago
- Vulnerable EDR☆26Nov 15, 2024Updated last year
- JamfHound is a python3 project designed to collect and identify attack paths in Jamf Pro tenants based on existing object permissions by …☆134Apr 23, 2026Updated last month
- A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …☆220Apr 17, 2026Updated last month
- ForsHops☆154Mar 25, 2025Updated last year
- .NET tool used to enrich RPC telemetry☆102Jan 24, 2026Updated 4 months ago
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS☆151Feb 10, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Obex – Blocking unwanted DLLs in user mode☆282Sep 18, 2025Updated 8 months ago
- Released presentations of my talks + code that used during these talks☆15Sep 5, 2024Updated last year
- about how to make a anti-virus engine☆112May 22, 2025Updated last year
- Test AMSI Provider implementation in C#☆45Dec 18, 2024Updated last year
- ☆83Nov 1, 2023Updated 2 years ago
- GitLab Attack TOolkit☆34Apr 24, 2026Updated last month
- a BOF implementation of various registry persistence methods☆97Nov 11, 2025Updated 6 months ago
- r2inspect is a professional malware analysis framework that automates deep static inspection for PE, ELF, and Mach-O binaries using the r…☆51May 20, 2026Updated 2 weeks ago
- Generate and Manage KeyCredentialLinks☆254Jun 2, 2026Updated last week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A simple tool to identify WDS servers in Active Directory☆32Aug 25, 2025Updated 9 months ago
- Sanctum is an experimental proof-of-concept EDR, designed to detect modern malware techniques, above and beyond the capabilities of antiv…☆548Mar 24, 2026Updated 2 months ago
- Local SYSTEM auth trigger for relaying - X☆155Jul 23, 2025Updated 10 months ago
- A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread☆33Sep 24, 2025Updated 8 months ago
- Locate dlls and function addresses without PEB Walk and EAT parsing☆107Nov 7, 2025Updated 7 months ago
- Fast context enumeration for newly obtained Active Directory credentials.☆86Apr 17, 2026Updated last month
- Toolset to manipulate RPC clients by finding delayed services and masquerading as them☆115Apr 28, 2026Updated last month