itm4n / VBA-RunPE
A VBA implementation of the RunPE technique or how to bypass application whitelisting.
☆790Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for VBA-RunPE
- Process Injection☆752Updated 3 years ago
- A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …☆875Updated 3 years ago
- Windows - Weaponizing privileged file writes with the Update Session Orchestrator service☆378Updated 4 years ago
- Excel 4.0 (XLM) Macro Generator for injecting DLLs and EXEs into memory.☆499Updated 4 years ago
- ☆462Updated last year
- Excel Macro Document Reader/Writer for Red Teamers & Analysts☆513Updated 2 years ago
- PoC of a VBA macro spawning a process with a spoofed parent and command line.☆375Updated 4 years ago
- .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers☆790Updated 2 years ago
- A method of bypassing EDR's active projection DLL's by preventing entry point exection☆1,114Updated 3 years ago
- SharpDump is a C# port of PowerSploit's Out-Minidump.ps1 functionality.☆660Updated 5 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,401Updated last year
- SharpWMI is a C# implementation of various WMI functionality.☆754Updated 3 years ago
- Tool to create hidden registry keys.☆466Updated 5 years ago
- Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands☆975Updated 3 years ago
- Obfuscate powershell scripts by replacing Function names, Variables and Parameters.☆511Updated last year
- eBook "Bypassing AVS by C#.NET Programming" (Free Chapters only)☆464Updated last year
- Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime pat…☆839Updated 3 years ago
- SafetyKatz is a combination of slightly modified version of @gentilkiwi's Mimikatz project and @subtee's .NET PE Loader☆1,228Updated 5 years ago
- Dump the memory of a PPL with a userland exploit☆845Updated 2 years ago
- DLL and PowerShell script to assist with finding DLL hijacks☆329Updated 4 years ago
- LSASS memory dumper using direct system calls and API unhooking.☆1,491Updated 3 years ago
- SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.☆1,179Updated 4 months ago
- C# Script used for Red Team☆716Updated 3 years ago
- AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.☆384Updated 5 years ago
- Toolbox containing research notes & PoC code for weaponizing .NET's DLR☆513Updated 2 years ago
- Token Privilege Research☆781Updated 7 years ago
- Adaptive DLL hijacking / dynamic export forwarding☆726Updated 4 years ago
- OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at s…☆503Updated 2 years ago
- PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as w…☆924Updated 5 months ago