almounah / silphLinks
Stealthy In-Memory Local Password Harvester (SILPH) tool: dump LSA, SAM and DCC2 with indirect syscall
☆125Updated last month
Alternatives and similar repositories for silph
Users that are interested in silph are comparing it to the libraries listed below
Sorting:
- Group Policy Objects manipulation and exploitation framework☆286Updated last month
- PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads☆237Updated 3 months ago
- Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…☆161Updated 3 months ago
- OAuth Device Code Phishing Toolkit☆108Updated 4 months ago
- Evade EDR's the simple way, by not touching any of the API's they hook.☆167Updated last year
- Adversary Emulation Framework☆129Updated 7 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆213Updated last year
- Tool to enumerate privileged Scheduled Tasks on Remote Systems☆275Updated 2 weeks ago
- ☆160Updated last year
- ☆229Updated 7 months ago
- Generate and Manage KeyCredentialLinks☆211Updated this week
- This is a novel technique that leverages the well-known Device Code phishing approach. It dynamically initiates the flow when the victim …☆182Updated 4 months ago
- Find potential DLL Sideloads on your windows computer☆218Updated last year
- Beacon Object File (BOF) port of DumpGuard for extracting NTLMv1 hashes from sessions on modern Windows systems.☆200Updated 3 weeks ago
- Two in one, patch lifetime powershell console, no more etw and amsi!☆102Updated 9 months ago
- Automating the MITM attack on WSUS☆296Updated 3 weeks ago
- Python alternative to Mimikatz lsadump::dcshadow☆157Updated 7 months ago
- PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph☆287Updated last week
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆181Updated 8 months ago
- Stage 0☆169Updated last year
- Founding is a generator that will create a loader encrypted or obfuscated with different execution types☆111Updated 5 months ago
- A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …☆213Updated 2 weeks ago
- ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets …☆147Updated 3 weeks ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆212Updated last year
- A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily☆252Updated last month
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆165Updated 6 months ago
- BloodHound PowerShell client☆76Updated last month
- A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …☆191Updated 9 months ago
- Tool for viewing NTDS.dit☆191Updated 10 months ago
- A powerful, modular, lightweight and efficient command & control framework written in Nim.☆216Updated 2 months ago