airzero24 / WMIReg
PoC to interact with local/remote registry hives through WMI
☆85Updated 4 years ago
Alternatives and similar repositories for WMIReg:
Users that are interested in WMIReg are comparing it to the libraries listed below
- .NET 4.0 Scheduled Job Lateral Movement☆90Updated 4 years ago
- ☆93Updated 3 years ago
- Yet another LSASS dumper☆76Updated 4 years ago
- A Cobalt Strike Aggressor script to generate GadgetToJScript payloads☆102Updated 4 years ago
- ☆63Updated 3 years ago
- ☆69Updated 4 years ago
- A little scanner to check the LDAP Signing state☆46Updated 3 years ago
- A faithful transposition of the key features/functionality of @itm4n's PPLDump project as a BOF.☆140Updated 3 years ago
- juicypotato for win10 > 1803 & win server 2019☆97Updated 4 years ago
- ☆56Updated 4 years ago
- Collect & Optimize awesome CobaltStrike aggressor scripts, hope to create a All-In-One framework.☆37Updated 5 years ago
- ☆70Updated 3 years ago
- SharpTask is a simple code set to interact with the Task Scheduler service api and is compatible with Cobalt Strike.☆90Updated 4 years ago
- .NET implementation of Cobalt Strike's External C2 Spec☆86Updated 3 years ago
- quick 'n dirty poc based on PoC windows auth prompt in c# based on https://gist.githubusercontent.com/mayuki/339952/raw/2c36b735bc51861a3…☆31Updated 4 years ago
- C# .NET Assembly for interacting with File Object DACLs☆42Updated 5 years ago
- C# PoC implementation for bypassing AMSI via in memory patching☆65Updated 4 years ago
- Pass the Hash to a named pipe for token Impersonation☆143Updated 4 years ago
- SharpBuster is a C# implementation of a directory brute forcing tool. It's designed to be used via Cobalt Strike's execute-assembly and s…☆62Updated 4 years ago
- Collection of Beacon Object Files (BOFs) for shells and lols☆118Updated 3 years ago
- SLib is a sandbox evasion library that implements some of the checks from https://evasions.checkpoint.com in C#☆64Updated last year
- Alternative C# Implementation tool to retrieve Active Directory Integrated DNS records with IP addresses☆49Updated 4 years ago
- A simplified version of DotNetToJScript to create a JScript file which loads a .NET v2 assembly from memory.☆47Updated 4 years ago
- MiniDumpWriteDump behavior modification hook☆50Updated 4 years ago
- credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege☆124Updated 3 years ago
- Implementation of SpoolSample without rDLL☆28Updated 4 years ago
- MSBuild without MSbuild.exe☆132Updated 4 years ago
- Load C# Code straight to memory☆54Updated 4 years ago
- ☆38Updated 4 years ago
- ☆55Updated 3 years ago