dirkjanm / DeviceTokenLinks
Request device ticket/token using the device's MSA
☆33Updated 4 months ago
Alternatives and similar repositories for DeviceToken
Users that are interested in DeviceToken are comparing it to the libraries listed below
Sorting:
- ☆100Updated last year
- Lateral Movement as loggedon User via Speech Named Pipe COM & ISpeechNamedPipe + COM Hijacking☆134Updated 6 months ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆75Updated last year
- Dump processes over WMI with MSFT_MTProcess☆81Updated 3 months ago
- Tool to bypass LSA Protection (aka Protected Process Light)☆64Updated last year
- a BOF implementation of various registry persistence methods☆92Updated 2 months ago
- Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion☆100Updated 6 months ago
- modified mssqlclient from impacket to extract policies from the SCCM database☆42Updated 2 months ago
- This code silently installs Chrome extensions on Mac, Windows, and Linux☆117Updated 5 months ago
- ☆52Updated 3 months ago
- Lateral movement with DCOM DLL hijacking☆174Updated 6 months ago
- TokenCert☆102Updated last year
- A Beacon Object File (BOF) that performs the complete ESC1 attack chain in a single execution: certificate request with arbitrary SAN (+S…☆108Updated 3 weeks ago
- A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.☆89Updated 10 months ago
- An alternative to the builtin clipboard feature in Cobalt Strike that adds the capability to enable/disable and dump the clipboard histor…☆51Updated this week
- ☆54Updated 7 months ago
- ☆49Updated 7 months ago
- A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …☆162Updated 2 months ago
- Remote service-staging tool built on Impacket, designed for BOF-style lateral movement workflows that lets you upload custom service load…☆117Updated last month
- adws enumeration bof☆160Updated 3 months ago
- EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.☆99Updated this week
- Proof-of-concept implementation of AI-enabled postex DLLs☆53Updated 4 months ago
- A BOF to enumerate system process, their protection levels, and more.☆123Updated last year
- The ADSyncDump BOF is a port of Dirk-Jan Mollema's adconnectdump.py / ADSyncDecrypt into a Beacon Object File (BOF) with zero dependencie…☆167Updated 4 months ago
- ☆51Updated 6 months ago
- Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover☆85Updated 2 months ago
- Modern PIC implant for Windows (64 & 32 bit)☆105Updated 5 months ago
- A portable C# utility for enumerating local and remote windows sessions☆53Updated last week
- BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR☆75Updated last year
- Python script to leverage MSFT_MTProcess WMI class☆39Updated 3 months ago