danielbohannon / Out-FINcodedCommand
POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's stdin command invocation capabilities
☆103Updated 7 years ago
Related projects ⓘ
Alternatives and complementary repositories for Out-FINcodedCommand
- Liniaal - A communication extension to Ruler☆96Updated 6 years ago
- In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)☆162Updated 7 years ago
- ☆97Updated 8 years ago
- CScriptShell, a Powershell Host running within cscript.exe☆158Updated 7 years ago
- Active Directory enumeration from non-domain system.☆117Updated 7 years ago
- ☆59Updated 5 years ago
- ☆84Updated 8 years ago
- ☆112Updated 7 years ago
- A collection of files for adding and leveraging custom properties in BloodHound.☆182Updated 4 years ago
- IR-Tools - PowerShell tools for IR☆128Updated 7 years ago
- Useful Threat Hunting Stuff☆31Updated 4 years ago
- Misc. PowerShell scripts☆115Updated 8 years ago
- A collection of PowerShell Modules for BloodHound/Empire Orchestration☆106Updated 7 years ago
- Powershell Persistence Locator☆66Updated 8 years ago
- All the Power with no Shell☆36Updated 2 years ago
- A command line tool for creating malicious outlook rules☆158Updated 5 years ago
- Offensive Data Storage☆58Updated 8 years ago
- Generates anti-sandbox analysis HTA files without payloads☆118Updated 7 years ago
- Collection of scripts for interacting with AD Kerberos from Linux☆71Updated 6 years ago
- Python script for analyis of the "Trust.csv" file generated by Veil PowerView. Provides graph based analysis and output.☆116Updated 4 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆75Updated 6 years ago
- ☆108Updated 7 years ago
- Listening Post for Throwback Implant☆110Updated 8 years ago
- PowerShell to Slack C2☆109Updated 6 years ago