guervild / uru
☆79Updated last year
Related projects ⓘ
Alternatives and complementary repositories for uru
- ☆150Updated 9 months ago
- ☆0Updated 7 months ago
- Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…☆96Updated 2 years ago
- ☆143Updated last year
- COFF file (BOF) for managing Kerberos tickets.☆280Updated last year
- Payload Generation Framework☆85Updated 7 months ago
- Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.☆117Updated 2 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆297Updated 8 months ago
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆46Updated 5 months ago
- InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem�…☆184Updated 3 years ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆250Updated last year
- ☆73Updated 6 months ago
- The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.☆108Updated 4 years ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆121Updated 8 months ago
- Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later☆89Updated last year
- Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…☆232Updated 3 years ago
- ADCS cert template modification and ACL enumeration☆129Updated last year
- Koppeling x Metatwin x LazySign☆203Updated 3 years ago
- Python tool to Check running WebClient services on multiple targets based on @leechristensen☆252Updated 3 years ago
- pysnaffler☆85Updated 2 months ago
- Beacon Object File & C# project to check LDAP signing☆170Updated 3 months ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆95Updated last year
- tgtdelegation is a Beacon Object File (BOF) to obtain a usable TGT via the "TGT delegation trick"☆154Updated 2 years ago
- Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…☆209Updated 3 years ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆110Updated last year
- ☆181Updated 7 months ago
- A Python POC for CRED1 over SOCKS5☆130Updated last month
- Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.☆79Updated 6 months ago
- Patch AMSI and ETW☆230Updated 6 months ago