clr2of8 / VBAstomp
A repository of example VBA stomped documents
☆26Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for VBAstomp
- A tool for detecting VBA stomping.☆96Updated 2 years ago
- ☆78Updated 7 years ago
- Detect possible sysmon logging bypasses given a specific configuration☆107Updated 5 years ago
- Code Exec via Excel☆84Updated 7 years ago
- A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…☆87Updated 5 years ago
- Inject Encrypted Commands Into EMF Shapes for C2 In VBA / Office Malware☆38Updated 4 years ago
- A Powershell implementation of PrivExchange designed to run under the current user's context☆123Updated 5 years ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆167Updated 4 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆75Updated 6 years ago
- Exercises for C# Workshop at Wild West Hackin' Fest 2018 & 2019.☆64Updated 5 years ago
- InsecurePowerShell is PowerShell with some security features removed.☆101Updated 6 years ago
- ☆123Updated 3 years ago
- Petaq - Purple Team Command & Control Server☆102Updated last year
- A repository that maps API calls to Sysmon Event ID's.☆116Updated last year
- ☆47Updated 4 years ago
- SMB Named Pipe shell☆63Updated 7 years ago
- C# Targeted Attack Reconnissance Tools☆121Updated 3 years ago
- Static based decoders for malware samples☆93Updated 4 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆105Updated 4 years ago
- Toolset for research malware and Cobalt Strike beacons☆206Updated last year
- Collection of awesome Cobalt Strike Aggressor Scripts. All credit due to the authors☆147Updated 5 years ago
- CSHARP DCOM Fun☆122Updated 5 years ago
- Neutering Sysmon via driver unload☆221Updated 2 years ago
- Proper Payload Protection Prevents Poor Performance☆73Updated 2 years ago
- A C# implementation of PrivExchange by @_dirkjan.☆156Updated 5 years ago
- Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.☆41Updated 6 years ago
- lateral movement techniques that can be used during red team exercises☆265Updated 4 years ago
- Port of Invoke-Excel4DCOM☆100Updated 5 years ago