davehardy20 / PoSHBypass

Related projects ⓘ

Alternatives and complementary repositories for PoSHBypass

• FuzzySecurity / DotNetToJScript-LanguageModeBreakout
  ☆26Updated 6 years ago
• slyd0g / SharpRoast-Parser
  Bash one-liner that will parse harmj0y's SharpRoast or Rebeus kerberoast into hashcat crack-able format.
  ☆32Updated 5 years ago
• G0ldenGunSec / wmiServSessEnum
  .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems
  ☆32Updated 4 years ago
• ALBY-Project / ALBY
  ☆21Updated 6 years ago
• NotoriousRebel / ConfigPersist
  Modifies machine.config for persistence after installing signed .net assembly onto GAC
  ☆11Updated 2 years ago
• Stealthbits / RIDHijackingProofofConceptKJ
  RID Hijacking Proof of Concept script by Kevin Joyce
  ☆15Updated 6 years ago
• tevora-threat / c2_reporter
  Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials
  ☆20Updated 3 years ago
• maaaaz / mimicertz
  A minimal safe version of mimikatz to only allow the export of non-exportable Windows certificates
  ☆24Updated 6 years ago
• attactics / cslogwatch
  Cobalt Strike log state tracking, parsing, and storage
  ☆22Updated 5 years ago
• rvrsh3ll / FlaskRedirectorProtector
  Protect your servers with a secret header
  ☆28Updated 4 years ago
• ThunderGunExpress / Thunder_Woosus
  ☆37Updated 6 years ago
• alfarom256 / ExternalC2Go
  ☆16Updated 4 years ago
• rvrsh3ll / CrypoCurrencyPowerShell
  ☆30Updated 6 years ago
• rmdavy / AmsiPEBWalkVBA
  Walking the PEB in VBA
  ☆22Updated 4 years ago
• dsnezhkov / RunDllMShim
  Run Managed Assemblies with RunDll
  ☆16Updated 6 years ago
• vletoux / DetectPasswordViaNTLMInFlow
  Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test …
  ☆57Updated 5 years ago
• ThunderGunExpress / ThunderMSI
  ☆28Updated 6 years ago
• skelsec / LocalNTLMTest
  Tool to acquire netNTLM hashes on a local machine wihtout network traffic
  ☆12Updated 6 years ago
• rvrsh3ll / Sharp-Suite
  My musings with C#
  ☆28Updated last year
• 0xbadjuju / PowerProvider
  ☆39Updated 6 years ago
• infosecn1nja / e2modrewrite
  Convert Empire profiles to Apache mod_rewrite scripts
  ☆27Updated 5 years ago
• vysecurity / Invoke-ProcessScan
  Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
  ☆42Updated 7 years ago
• curtbraz / Invoke-NeutralizeAV
  Quick PoC I Wrote for Bypassing Next Gen AV Remotely for Pentesting
  ☆41Updated 5 years ago
• freshness79 / unlock
  Microsoft Applocker evasion tool
  ☆38Updated 4 years ago
• curi0usJack / psfire
  simple demo of using C# & System.Management.Automation.dll to run powershell code (b64 encoded) without powershell.exe
  ☆13Updated 7 years ago
• ConsciousHacker / GreatSCT
  The project is called GreatSCT (Great Scott). GreatSCT is an open source project to generate application white list bypasses. This tool i…
  ☆28Updated 6 years ago