X-C3LL / SharpNTLMRawUnHide
C# version of NTLMRawUnHide
β72Updated 2 years ago
Alternatives and similar repositories for SharpNTLMRawUnHide:
Users that are interested in SharpNTLMRawUnHide are comparing it to the libraries listed below
- A care package of useful bofs for red team engagmentsβ53Updated last month
- Click Once + App Domainβ62Updated last year
- Enumerate information from NTLM authentication enabled web endpoints πβ35Updated last year
- BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDRβ73Updated 11 months ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flaggedβ86Updated 2 years ago
- Modified versions of the Cobalt Strike Process Injection Kitβ90Updated 11 months ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjectionβ53Updated 2 years ago
- A C# tool to output crackable DPAPI hashes from user MasterKeysβ132Updated 4 months ago
- β61Updated 2 years ago
- Windows Persistence Toolkit in C#β36Updated 2 years ago
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.β39Updated last year
- β61Updated last week
- WhoAmI by asking the LDAP service on a domain controller.β59Updated 2 years ago
- a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Calβ¦β51Updated last year
- SharpElevator is a C# implementation of Elevator for UAC bypass. This UAC bypass was originally discovered by James Forshaw and publisheβ¦β50Updated 2 years ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.β70Updated last year
- Proof of Concept code and samples presenting emerging threat of MSI installer files.β78Updated 2 years ago
- A VSCode devcontainer for development of COFF files with batteries included.β47Updated last year
- β89Updated 2 years ago
- Beacon Object Files (not Buffer Overflows)β53Updated last year
- Cobalt Strike BOF for quser.exe implementation using Windows APIβ83Updated last year
- C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AADβ¦β36Updated last year
- Lockless BOFβ62Updated 11 months ago
- β35Updated 2 years ago
- β75Updated last year
- Lateral Movement via the .NET Profilerβ75Updated last month
- Beacon Object File allowing creation of Beacons in different sessions.β78Updated 2 years ago
- Secretsdump C# version only supporting local (live) operationβ47Updated last year
- C# Port of LdapRelayScanβ78Updated 2 years ago