h0mbre / Dali
☆67Updated last year
Alternatives and similar repositories for Dali:
Users that are interested in Dali are comparing it to the libraries listed below
- ☆42Updated 2 years ago
- Harvis is designed to automate your C2 Infrastructure.☆105Updated 2 years ago
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆62Updated 2 years ago
- ☆45Updated 3 years ago
- AMSI Bypass Via the Heap☆105Updated 4 years ago
- credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege☆122Updated 3 years ago
- C# PoC implementation for bypassing AMSI via in memory patching☆65Updated 4 years ago
- Windows TCPIP Finger Command / C2 Channel and Bypassing Security Software☆66Updated last year
- (kinda) Malicious Outlook Reader☆134Updated 4 years ago
- A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…☆88Updated 5 years ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 2 years ago
- IOXIDResolver from AirBus Security/PingCastle☆47Updated 4 years ago
- UI for creating LNKs☆97Updated 3 years ago
- ☆55Updated 3 years ago
- ☆35Updated 3 years ago
- Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR☆98Updated 3 years ago
- (PoC) Tiny Excel BIFF8 Generator, to Embedded 4.0 Macros in xls files without Excel.☆42Updated 3 years ago
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆90Updated 3 years ago
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆79Updated last year
- Exchangelib wrapper for pentesting☆59Updated 3 weeks ago
- Deliver powershell paylods via DNS TXT via CloudFlare using PowerShell☆60Updated 6 years ago
- Yet another LSASS dumper☆76Updated 4 years ago
- ☆24Updated 3 years ago
- MiniDumpWriteDump behavior modification hook☆50Updated 4 years ago
- A fake AMSI Provider which can be used for persistence.☆147Updated 3 years ago
- C++ implant that interfaces with a SK8PARK server☆48Updated 3 years ago
- pypykatz plugin for volatility3 framework☆39Updated 11 months ago
- MSBuild without MSbuild.exe☆129Updated 4 years ago
- Companion PoC for the "Adventures in Dynamic Evasion" blog post☆121Updated 3 years ago
- C# POC code for the SessionEnv dll hijack by utilizing called functions of TSMSISrv.dll☆57Updated 5 years ago