ewhitehats / kovterTools
☆35Updated 6 years ago
Related projects ⓘ
Alternatives and complementary repositories for kovterTools
- module for certexfil☆15Updated 2 years ago
- A PowerShell script to prevent Sysmon from writing its events☆14Updated 4 years ago
- Scans through registry hives outputting entropy values for key/values, dumps binary contents to files...we are looking for those "fileles…☆11Updated 5 years ago
- Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.☆13Updated 6 years ago
- Ransoblin (Ransomware Bokoblin)☆17Updated 4 years ago
- Python script to patch the reflective stub in a DLL☆24Updated 7 years ago
- Forked and updated with some additional features over the original☆16Updated 3 years ago
- Visual Studio (C++) Solution Template for Payloads☆18Updated 5 years ago
- ☆12Updated 3 years ago
- Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog☆13Updated 4 years ago
- Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.☆41Updated 6 years ago
- PoC code from blog☆16Updated 4 years ago
- Unamanged PS with Named Pipes☆9Updated 3 years ago
- windows-operating-system-archaeology @Enigma0x3 @subTee☆44Updated 7 years ago
- A tool to create COM class/interface relationships in neo4j☆47Updated 2 years ago
- ☆26Updated 3 weeks ago
- Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…☆27Updated 8 years ago
- A Canary which fires when uninstalled☆34Updated 3 years ago
- Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…☆18Updated 4 years ago
- Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.☆27Updated 7 years ago
- Run Managed Assemblies with RunDll☆16Updated 6 years ago
- ☆24Updated 6 years ago