hausec / MaliciousClickOnceMSBuild
Basic C# Project that will take an MSBuild payload and run it with MSBuild via ClickOnce.
☆90Updated 4 years ago
Alternatives and similar repositories for MaliciousClickOnceMSBuild:
Users that are interested in MaliciousClickOnceMSBuild are comparing it to the libraries listed below
- ☆92Updated 3 years ago
- Load C# Code straight to memory☆53Updated 4 years ago
- credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege☆123Updated 3 years ago
- AMSI Bypass Via the Heap☆106Updated 4 years ago
- ☆67Updated 3 years ago
- C# port of the Get-AppLockerPolicy PS cmdlet☆98Updated 2 years ago
- A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …☆84Updated 4 years ago
- PoC to interact with local/remote registry hives through WMI☆84Updated 4 years ago
- MiniDumpWriteDump behavior modification hook☆50Updated 4 years ago
- A little scanner to check the LDAP Signing state☆46Updated 3 years ago
- Tool for interacting with outlook interop during red team engagements☆143Updated 3 years ago
- Port of Invoke-Excel4DCOM☆103Updated 5 years ago
- Credential Dumper☆76Updated 5 years ago
- ☆70Updated 3 years ago
- A Cobalt Strike Aggressor script to generate GadgetToJScript payloads☆101Updated 4 years ago
- Add SD for controlled computer object to a target object for RBCD using LDAP☆38Updated 3 years ago
- Implementation of b4rtiks's SharpMiniDump using NTFS transactions to avoid writting the minidump to disk and exfiltrating it via HTTPS us…☆70Updated 4 years ago
- ☆55Updated 3 years ago
- ☆45Updated 3 years ago
- C# POC code for the SessionEnv dll hijack by utilizing called functions of TSMSISrv.dll☆58Updated 5 years ago
- ☆92Updated 2 years ago
- ☆56Updated 4 years ago
- SharpBuster is a C# implementation of a directory brute forcing tool. It's designed to be used via Cobalt Strike's execute-assembly and s…☆61Updated 4 years ago
- Service Enumeration C# .NET Assembly☆60Updated 3 years ago
- .NET 4.0 Scheduled Job Lateral Movement☆90Updated 4 years ago
- Hardened Proof of Concept of D/Invoke Process Injection malware☆40Updated 4 years ago
- Suite of Shellcode Running Utilities☆109Updated 5 years ago
- Tool to discover Resource-Based Constrained Delegation attack paths in Active Directory environments☆119Updated 3 years ago
- Checks for signature requirements over LDAP☆96Updated 2 years ago
- Pass the Hash to a named pipe for token Impersonation☆141Updated 3 years ago