clr2of8 / VBAstomp
A repository of example VBA stomped documents
☆26Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for VBAstomp
- A tool for detecting VBA stomping.☆96Updated 2 years ago
- Detect possible sysmon logging bypasses given a specific configuration☆107Updated 5 years ago
- A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…☆87Updated 5 years ago
- ☆78Updated 7 years ago
- InsecurePowerShell is PowerShell with some security features removed.☆101Updated 6 years ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆167Updated 4 years ago
- Code Exec via Excel☆85Updated 7 years ago
- Python script that takes new output from Get-DomainTrustMapping .csvs and outputs graphml. Based on DomainTrustExplorer.☆90Updated 11 months ago
- ☆123Updated 3 years ago
- A repository that maps API calls to Sysmon Event ID's.☆116Updated 2 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆75Updated 6 years ago
- Inject Encrypted Commands Into EMF Shapes for C2 In VBA / Office Malware☆38Updated 4 years ago
- TA505+ Adversary Simulation☆65Updated 3 years ago
- Presentation material presented by Outflank team members at public events.☆181Updated last week
- Lateral Movement technique using DCOM and HTA☆229Updated 2 years ago
- Neutering Sysmon via driver unload☆222Updated 2 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆105Updated 5 years ago
- Exercises for C# Workshop at Wild West Hackin' Fest 2018 & 2019.☆64Updated 5 years ago
- ☆47Updated 4 years ago
- A Powershell implementation of PrivExchange designed to run under the current user's context☆123Updated 5 years ago
- Proper Payload Protection Prevents Poor Performance☆73Updated 2 years ago
- ☆108Updated 6 years ago
- An Insider Threat Toolkit☆149Updated 5 years ago
- C# Targeted Attack Reconnissance Tools☆121Updated 3 years ago
- SMB Named Pipe shell☆63Updated this week
- DLL Password Filter Implant with Exfiltration Capabilities☆134Updated 4 years ago
- Collection of VBA macro published in our twitter / blog☆154Updated 2 years ago
- CSHARP DCOM Fun☆125Updated 5 years ago