ewhitehats / kovterToolsLinks
☆35Updated 6 years ago
Alternatives and similar repositories for kovterTools
Users that are interested in kovterTools are comparing it to the libraries listed below
Sorting:
- windows-operating-system-archaeology @Enigma0x3 @subTee☆46Updated 8 years ago
- ☆36Updated 5 years ago
- Programmatically access a TLS certificate chain in C++ and C#☆13Updated 6 years ago
- Loads the AutoIt DLL and PowerShell assemblies into memory and executes the specified keystrokes☆61Updated 8 years ago
- Removal of certain event logs within a Windows OS☆8Updated 6 years ago
- Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test …☆59Updated 6 years ago
- Protects and logs suspicious and malicious usage of .NET CSC.exe and Runtime C# Compilation☆25Updated 7 years ago
- Tool for injecting a "TCP Relay" managed assembly into an unmanaged process☆65Updated 6 years ago
- Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.☆43Updated 6 years ago
- ☆25Updated 7 years ago
- Ps1jacker is a tool for generating COM Hijacking payload.☆61Updated 5 months ago
- Privilege Escilation training project, with an emphasis on the distinction between vulnerability research & it's exposure and exploitatio…☆35Updated 8 years ago
- Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.☆46Updated 8 years ago
- Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.☆27Updated 8 years ago
- A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection☆31Updated 4 years ago
- ☆60Updated 5 years ago
- Pack required dlls into a single binary that has no imports and makes direct syscalls on Windows☆28Updated 8 years ago
- Powershell script which will take any payload and put it in the a bat script which delivers the payload. The payload is delivered using e…☆53Updated last year
- Slides from my talk "whoami /priv" at Romhack 2018☆39Updated 6 years ago
- Volatility Framework plugin to detect various types of hooks as performed by banking Trojans☆41Updated 6 years ago
- The Multiplatform Linux Sandbox☆16Updated last year
- Making shellcode UD - https://osandamalith.com☆24Updated 9 years ago
- A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…☆43Updated 4 years ago
- A pattern for a self-installing Windows service in C# with the unstoppable attributes in C#.☆66Updated 6 years ago
- Shim database persistence (Fin7 TTP)☆37Updated 5 years ago
- A cross platform tool for verifying credentials and executing single commands☆32Updated 6 years ago
- Script to parse Process Monitor XML log file, and give you a summary report.☆23Updated 9 years ago
- A simple, minimal C# windows service implementation that can be used to demonstrate privilege escalation from misconfigured windows servi…☆16Updated 9 years ago
- ☆45Updated 7 years ago
- Create COM Objects backed by Scripts, not DLLs☆9Updated 8 years ago