abelcheung / rifiuti2
Windows Recycle Bin analyser
☆144Updated 6 months ago
Related projects ⓘ
Alternatives and complementary repositories for rifiuti2
- Powershell script for enumerating vulnerable DCOM Applications☆254Updated 5 years ago
- exe2powershell - exe2bat reborn for modern Windows☆168Updated 4 years ago
- How To Execute Shellcode via HTA☆136Updated 6 years ago
- Windows 10 LPE (UAC Bypass) in Windows Store (WSReset.exe)☆263Updated 4 years ago
- Slides and reference material from Evading Autoruns presentation at DerbyCon 7 (September 2017)☆102Updated 3 years ago
- Windows RID Hijacking persistence technique☆165Updated this week
- Allows you to quickly query a Windows machine for RAM artifacts☆218Updated 4 years ago
- a tool to make it easy and fast to test various forms of injection☆172Updated 5 years ago
- ☆91Updated 2 years ago
- Web-based check for Windows privesc vulnerabilities☆138Updated last year
- Dump various types of Windows credentials without injecting in any process.☆417Updated last year
- Commandline low level file extractor for NTFS☆274Updated 5 years ago
- 🚀AutoRuns is a PowerShell module that will help do live incident response and enumerate autoruns artifacts that may be used by legitima…☆257Updated 7 months ago
- Parse evtx files and detect use of the DanderSpritz eventlogedit module☆147Updated 6 years ago
- Remove individual lines from Windows XML Event Log (EVTX) files☆260Updated 3 years ago
- A Bind Shell Using the Fax Service and a DLL Hijack☆324Updated 4 years ago
- Windows Credentials Editor v1.3beta☆106Updated 5 years ago
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆319Updated 7 years ago
- Windows Shortcut file (LNK) parser☆134Updated 2 years ago
- ☆347Updated 2 years ago
- Active Directory forensic framework☆319Updated 2 years ago
- Encode powershell payload into bat files☆146Updated 6 years ago
- Netview enumerates systems using WinAPI calls☆289Updated 2 years ago
- ☆118Updated 9 years ago
- PrintDemon is a PoC for a series of issues in the Windows Print Spooler service, as well as potetial misuses of the functionality.☆196Updated 4 years ago
- A PoC WMI backdoor presented at Black Hat 2015☆270Updated 9 years ago
- Parser for $UsnJrnl on NTFS☆108Updated last year