danielwolfman / Invoke-WordThief
This script runs multithreading module that connects to a remote TCP server, monitors active (opened) Microsoft Word documents (.doc,.docx,etc') and extracting their text using Word application's COM Object. The script adds HKCU registry (no admin needed) Run key, so this script runs persistently.
☆32Updated 4 years ago
Alternatives and similar repositories for Invoke-WordThief:
Users that are interested in Invoke-WordThief are comparing it to the libraries listed below
- Extracts Azure authentication tokens from PowerShell process minidumps.☆23Updated last year
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 4 years ago
- A pair of scripts to import session and local group information that has been collected from alternate data sources into BloodHound's Neo…☆19Updated 2 years ago
- LetMeOutOfYour.net Resources☆20Updated 4 years ago
- Checklist for pentests, handy commands for to remembers, and a few tools to work on here and there. Far from complete!☆26Updated last year
- ansible roles to download and install empire (BC-Security),deathstar(byt3bl33der) and starkiller (BC-Security)☆23Updated 2 years ago
- C# utility that uses WMI to run "cmd.exe /c netstat -n", save the output to a file, then use SMB to read and delete the file remotely☆38Updated 5 years ago
- An enumeration and exploitation toolkit using RFC calls to SAP☆36Updated 5 years ago
- Some Hashcat Rules for 2020 and beyond. Contributions encouraged!☆24Updated 2 years ago
- ☆37Updated 6 years ago
- Data exfiltration utility for testing detection capabilities☆57Updated 3 years ago
- ☆19Updated 4 years ago
- .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems☆32Updated 5 years ago
- ☆16Updated 7 years ago
- The project is called GreatSCT (Great Scott). GreatSCT is an open source project to generate application white list bypasses. This tool i…☆29Updated 6 years ago
- A collection of OSCE preparation resources.☆23Updated 5 years ago
- A simple program to query nmap xml files in the terminal.☆27Updated 4 years ago
- various slides and presentations I've worked on☆18Updated 10 months ago
- Methods of C2☆21Updated 9 years ago
- Helpful operator notes and techniques in actionable form☆16Updated last year
- Post-exploitation tool for attacking Active Directory domain controllers☆17Updated 2 years ago
- Apply a filter to the events being reported by windows event logging☆15Updated 4 years ago
- Serving files with conditions, serverside keying and more.☆18Updated 2 years ago
- automatic scan for hackthebox☆14Updated 5 years ago
- rustyIron is a tool that takes advantage of functionality within Ivanti's MobileIron MDM solution to perform single-factor authentication…☆43Updated 3 years ago
- ☆13Updated 3 years ago
- ☆14Updated 4 years ago
- Python Script for SAML2 Authentication Passwordspray☆38Updated last year