dfirfpi / dpapilabLinks
Windows DPAPI laboratory
☆91Updated 7 years ago
Alternatives and similar repositories for dpapilab
Users that are interested in dpapilab are comparing it to the libraries listed below
Sorting:
- DPAPI offline decryption utility☆69Updated 2 years ago
- A repository of some of my Windows 10 Device Guard Bypasses☆137Updated 7 years ago
- A one-click tool to inject jobs into the BITS queue (Background Intelligent Transfer Service), allowing arbitrary program execution as th…☆99Updated 5 years ago
- POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's s…☆104Updated 7 years ago
- VBS Reversed TCP Meterpreter Stager☆88Updated 8 years ago
- In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)☆168Updated 8 years ago
- Pure Python parser for Application Compatibility Shim Databases (.sdb files)☆108Updated 4 years ago
- ☆83Updated 9 years ago
- PoC dlls for Task Scheduler COM Hijacking☆94Updated 8 years ago
- Elevation by environment variable expansion☆65Updated 8 years ago
- Loads the AutoIt DLL and PowerShell assemblies into memory and executes the specified keystrokes☆61Updated 7 years ago
- ☆229Updated 7 years ago
- A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics☆86Updated 7 years ago
- Randomly changes Win32/64 PE Files for 'safer' uploading to malware and sandbox sites.☆131Updated 11 years ago
- UAC Bypass with mmc via alpc☆156Updated 6 years ago
- A tool to exploit .NET DCOM for EoP and RCE. Is fixed in latest versions of the .NET.☆91Updated 10 years ago
- Offensive Data Storage☆60Updated 8 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆76Updated 6 years ago
- PoC for persisting .NET payloads in Windows Notification Facility (WNF) state names using low-level Windows Kernel API calls.☆151Updated 6 years ago
- A "tiny" meterpreter stager☆128Updated 5 years ago
- This is a simple parser for/decrypter for Impacket's esentutl.py utility. It assists with decrypting hashes and hash histories from ntds.…☆71Updated 8 years ago
- A Generic Windows Memory Scraping Tool☆71Updated 8 years ago
- Mario & Luigi - Tools for sniffing Windows Named Pipes communication☆129Updated 8 years ago
- A command line tool for creating malicious outlook rules☆164Updated 6 years ago
- Reflective Polymorphism☆104Updated 6 years ago
- ☆63Updated 9 years ago
- s(4)u for Windows☆48Updated 4 years ago
- ☆79Updated 9 years ago
- CScriptShell, a Powershell Host running within cscript.exe☆160Updated 8 years ago
- A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.☆97Updated 7 years ago