fashionproof / CheckSafeBoot
I used this to see if an EDR is running in Safe Mode
☆36Updated 4 years ago
Alternatives and similar repositories for CheckSafeBoot:
Users that are interested in CheckSafeBoot are comparing it to the libraries listed below
- Core bypass Windows Defender and execute any binary converted to shellcode☆43Updated 3 years ago
- Run PowerShell command without invoking powershell.exe☆35Updated 3 years ago
- A repo to hold any bypasses I work on/study/whatever☆19Updated 4 years ago
- Execute Mimikatz with different technique☆51Updated 3 years ago
- Out-of-the-Box Tool to Obfuscate Excel XLS. Include Obfuscation & Hide for Cell Labels & BoundSheets☆48Updated 3 years ago
- Extended Process List (Search functionality)☆29Updated 4 years ago
- Scripts to automate standing up apache2 with mod_rewrite in front of C2 servers.☆46Updated 4 years ago
- treafik fronted c2 examples☆26Updated 4 years ago
- LoadLibrary for offensive operations☆33Updated 3 years ago
- Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)☆26Updated 5 years ago
- A script that can be deployed to Azure App for C2 / Proxy / Redirector☆36Updated 5 years ago
- ☆18Updated 3 years ago
- A C# tool to send emails through Outlook from the command line or in memory☆31Updated 4 years ago
- Cobalt Strike Malleable Profile Inline Patch Template: A Position Independent Code (PIC) Code Template For Creating Shellcode That Can Be…☆39Updated 4 years ago
- C# wrapper for ligolo☆16Updated 3 years ago
- CobaltStrike Aggressor Script to utilise FuzzySec's Windows Notification Framework Research to Spawn a Shell under Explorer.exe☆16Updated 5 years ago
- Repository for dirty scripts and PoCs☆17Updated last month
- A little implant which SSH's back with a shell☆36Updated 3 years ago
- Example of running C3 (https://github.com/FSecureLABS/C3) in a Docker container☆26Updated 3 years ago
- ☆16Updated 3 years ago
- quick 'n dirty poc based on PoC windows auth prompt in c# based on https://gist.githubusercontent.com/mayuki/339952/raw/2c36b735bc51861a3…☆31Updated 4 years ago
- A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/☆31Updated last year
- A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.☆18Updated 3 years ago
- Beacon payload using AV bypass method from https://github.com/fullmetalcache/CsharpMMNiceness and shellcode generated from https://github…☆20Updated 4 years ago
- Microsoft Applocker evasion tool☆38Updated 5 years ago
- Spin up a reverse proxy quickly on Heroku☆13Updated 4 years ago
- Windows File Enumeration Intel Gathering Tool.☆17Updated last year
- SharpSvc is a simple code set to interact with the SC Manager API and is compatible with Cobalt Strike.☆25Updated last year
- C# port of LogServiceCrash☆45Updated 4 years ago
- A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.☆34Updated 3 years ago