iomoath / SharpStrike
A Post exploitation tool written in C# uses either CIM or WMI to query remote systems.
☆197Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for SharpStrike
- C# POC for CVE-2021-26855 aka ProxyLogon, supports the classically semi-interactive web shell as well as shellcode injection☆239Updated 3 years ago
- ☆208Updated 4 years ago
- C Sharp codes of my blog.☆181Updated 2 years ago
- Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…☆260Updated 3 years ago
- PoC for UUID shellcode execution using DInvoke☆149Updated 3 years ago
- SMBExec C# module☆214Updated 4 years ago
- Simple PoC demonstrating syscall execution in C#☆151Updated 4 years ago
- New UAC bypass for Silent Cleanup for CobaltStrike☆189Updated 3 years ago
- Active Directory password spraying tool. Auto fetches user list and avoids potential lockouts.☆126Updated 2 years ago
- Use to check the valid account of the Remote Desktop Protocol(Support plaintext and ntlmhash)☆162Updated 4 years ago
- dem sharp donuts☆187Updated 2 years ago
- A Combination LSASS Dumper and LSASS Parser. All Credit goes to @slyd0g and @cube0x0.☆147Updated 3 years ago
- A C# tool with more flexibility to customize scheduled task for both persistence and lateral movement in red team operation☆324Updated 2 years ago
- Windows Defender ShellCode Execution Bypass☆126Updated 4 years ago
- A C# implementation of RDPThief to steal credentials from RDP.☆156Updated 4 years ago
- My CobaltStrike BOFS☆159Updated 2 years ago
- A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.☆213Updated last year
- Collection of tested Cobaltstrike aggressor scripts.☆109Updated 4 years ago
- C# port of WMImplant which uses either CIM or WMI to query remote systems☆195Updated 3 years ago
- Another meterpreter injection technique using C# that attempts to bypass Defender☆254Updated 3 years ago
- This tool enables the compilation of a C# program that will execute arbitrary PowerShell code, without launching PowerShell processes thr…☆192Updated 4 years ago
- .NET implementation of Get-GPPPassword. Retrieves the plaintext password and other information for accounts pushed through Group Policy P…☆165Updated 4 years ago
- ☆170Updated 3 years ago
- Windows NTLM Authentication Backdoor☆236Updated 3 years ago
- This aggressor script uses a beacon's note field to indicate the health status of a beacon.☆138Updated 3 years ago
- Pass the Hash to a named pipe for token Impersonation☆294Updated 11 months ago
- A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…☆266Updated last year
- C# Shellcode Runner to execute shellcode via CreateRemoteThread and SetThreadContext to evade Get-InjectedThread☆119Updated 5 years ago