abelcheung / rifiuti2

Related projects ⓘ

Alternatives and complementary repositories for rifiuti2

• sud0woodo / DCOMrade
  Powershell script for enumerating vulnerable DCOM Applications
  ☆254Updated 5 years ago
• yanncam / exe2powershell
  exe2powershell - exe2bat reborn for modern Windows
  ☆168Updated 4 years ago
• johnjohnsp1 / Shellcode-Via-HTA
  How To Execute Shellcode via HTA
  ☆136Updated 6 years ago
• sailay1996 / UAC_bypass_windows_store
  Windows 10 LPE (UAC Bypass) in Windows Store (WSReset.exe)
  ☆263Updated 4 years ago
• huntresslabs / evading-autoruns
  Slides and reference material from Evading Autoruns presentation at DerbyCon 7 (September 2017)
  ☆102Updated 3 years ago
• r4wd3r / RID-Hijacking
  Windows RID Hijacking persistence technique
  ☆165Updated this week
• gleeda / memtriage
  Allows you to quickly query a Windows machine for RAM artifacts
  ☆218Updated 4 years ago
• praetorian-inc / vulcan
  a tool to make it easy and fast to test various forms of injection
  ☆172Updated 5 years ago
• trustedsec / tscopy
  ☆91Updated 2 years ago
• deadjakk / patch-checker
  Web-based check for Windows privesc vulnerabilities
  ☆138Updated last year
• quarkslab / quarkspwdump
  Dump various types of Windows credentials without injecting in any process.
  ☆417Updated last year
• jschicht / RawCopy
  Commandline low level file extractor for NTFS
  ☆274Updated 5 years ago
• p0w3rsh3ll / AutoRuns
  🚀AutoRuns is a PowerShell module that will help do live incident response and enumerate autoruns artifacts that may be used by legitima…
  ☆257Updated 7 months ago
• fox-it / danderspritz-evtx
  Parse evtx files and detect use of the DanderSpritz eventlogedit module
  ☆147Updated 6 years ago
• 3gstudent / Eventlogedit-evtx--Evolution
  Remove individual lines from Windows XML Event Log (EVTX) files
  ☆260Updated 3 years ago
• ionescu007 / faxhell
  A Bind Shell Using the Fax Service and a DLL Hijack
  ☆324Updated 4 years ago
• returnvar / wce
  Windows Credentials Editor v1.3beta
  ☆106Updated 5 years ago
• Cn33liz / StarFighters
  A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.
  ☆319Updated 7 years ago
• silascutler / LnkParse
  Windows Shortcut file (LNK) parser
  ☆134Updated 2 years ago
• anthemtotheego / SharpExec
  ☆347Updated 2 years ago
• csababarta / ntdsxtract
  Active Directory forensic framework
  ☆319Updated 2 years ago
• klsecservices / bat-armor
  Encode powershell payload into bat files
  ☆146Updated 6 years ago
• mubix / netview
  Netview enumerates systems using WinAPI calls
  ☆289Updated 2 years ago
• enigma0x3 / Invoke-AltDSBackdoor
  ☆118Updated 9 years ago
• ionescu007 / PrintDemon
  PrintDemon is a PoC for a series of issues in the Windows Print Spooler service, as well as potetial misuses of the functionality.
  ☆196Updated 4 years ago
• mattifestation / WMI_Backdoor
  A PoC WMI backdoor presented at Black Hat 2015
  ☆270Updated 9 years ago
• jschicht / UsnJrnl2Csv
  Parser for $UsnJrnl on NTFS
  ☆108Updated last year