jackson5sec/ShimDB external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

jackson5sec/ShimDB

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/jackson5sec/ShimDB)

Close

jackson5sec / ShimDBView on GitHubMore

• External links
• Readme badge

Shim database persistence (Fin7 TTP)

☆37Feb 25, 2020Updated 6 years ago

Alternatives and similar repositories for ShimDB

Users that are interested in ShimDB are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• ThunderGunExpress / ThunderMSI

  View on GitHub
  ☆28Dec 28, 2017Updated 8 years ago
• securesean / Shim-Process-Scanner

  View on GitHub
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Oct 17, 2018Updated 7 years ago
• roo7cause / Ps1jacker

  View on GitHub
  Ps1jacker is a tool for generating COM Hijacking payload.
  ☆60Feb 11, 2025Updated last year
• decoder-it / CreateTokenExample

  View on GitHub
  ☆18Jul 4, 2019Updated 6 years ago
• nccgroup / yaml2yara

  View on GitHub
  Generate bulk YARA rules from YAML input
  ☆22Feb 3, 2020Updated 6 years ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• kost / rdpcmd-ruby

  View on GitHub
  Run commands over RDP on massive number of hosts
  ☆11Nov 26, 2018Updated 7 years ago
• msuhanov / registry-miner

  View on GitHub
  Registry Miner
  ☆14Apr 10, 2018Updated 8 years ago
• EricZimmerman / USBDevices

  View on GitHub
  Get USB Devices from Registry hives
  ☆22Nov 15, 2021Updated 4 years ago
• 0xcpu / winsmsd

  View on GitHub
  Windows (ShadowMove) Socket Duplication
  ☆88Apr 19, 2020Updated 5 years ago
• silascutler / IDA_AutoAnalysis

  View on GitHub
  IDA Pro plugin that rename functions on load, based on functionality
  ☆19Mar 9, 2018Updated 8 years ago
• jordisk / TheHive2Sigma

  View on GitHub
  Python script to automatically create sigma rules from The hive observables
  ☆25Mar 17, 2019Updated 7 years ago
• OG-Sadpanda / SharpCat

  View on GitHub
  C# alternative to the linux "cat" command... Prints file contents to console. For use with Cobalt Strike's Execute-Assembly
  ☆15Jul 15, 2021Updated 4 years ago
• gmh5225 / LetMeGG

  View on GitHub
  POC about how to prevent windbg break
  ☆15Oct 3, 2022Updated 3 years ago
• williballenthin / python-sdb

  View on GitHub
  Pure Python parser for Application Compatibility Shim Databases (.sdb files)
  ☆110Jan 26, 2021Updated 5 years ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• matthewdunwoody / PS_logging_reg

  View on GitHub
  A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed
  ☆16Jun 20, 2016Updated 9 years ago
• evil-e / sdb-explorer

  View on GitHub
  Tool to view and create Microsoft shim database files (SDB).
  ☆119May 11, 2017Updated 8 years ago
• RISCYBusiness / Jadoube

  View on GitHub
  ☆22Jul 7, 2017Updated 8 years ago
• Vicshann / Common

  View on GitHub
  Some eternal WIP stuff :)
  ☆21Nov 18, 2025Updated 4 months ago
• bsi-group / autorun-logger-server

  View on GitHub
  Server for receiving autorun data from the clients
  ☆13Sep 26, 2017Updated 8 years ago
• et0x / C2

  View on GitHub
  Methods of C2
  ☆22Jul 15, 2015Updated 10 years ago
• IVMachiavelli / Notes

  View on GitHub
  Technical Notes
  ☆16Dec 1, 2017Updated 8 years ago
• senko37 / createprocessnotify-hook

  View on GitHub
  PsSetCreateProcessNotifyRoutine/Ex/Ex2 hook
  ☆13May 30, 2024Updated last year
• darkquasar / WMI_Persistence

  View on GitHub
  A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics
  ☆88Oct 6, 2017Updated 8 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• jthuraisamy / av-fingerprints

  View on GitHub
  Antivirus Emulator Fingerprints
  ☆30Oct 12, 2018Updated 7 years ago
• OffenseTeacher / NimSkrull

  View on GitHub
  NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…
  ☆13May 20, 2023Updated 2 years ago
• ConsciousHacker / GreatSCT

  View on GitHub
  The project is called GreatSCT (Great Scott). GreatSCT is an open source project to generate application white list bypasses. This tool i…
  ☆29May 5, 2018Updated 7 years ago
• spaceraccoon / serverless-recon-example

  View on GitHub
  Example of a serverless web reconaissance workflow's AWS architecture.
  ☆11Feb 25, 2023Updated 3 years ago
• ZaweSec / KasperskyHook_NewKSDriver

  View on GitHub
  ☆34Aug 14, 2023Updated 2 years ago
• machosec / Mystique

  View on GitHub
  PowerShell module to play with Kerberos S4U extensions
  ☆52Apr 2, 2017Updated 9 years ago
• vector-sec / DuoPusher

  View on GitHub
  Duo MFA auditing tool to test users' likelihood of approving unexpected push notifications
  ☆13Apr 20, 2018Updated 7 years ago
• forensicmatt / RustyReg

  View on GitHub
  Registry to JSON. This Project is for learning purposes and is not maintained.
  ☆12Dec 28, 2021Updated 4 years ago
• klezVirus / AIDA64DRIVER-EoP

  View on GitHub
  AIDA64DRIVER Elevation of Privilege Vulnerability
  ☆17Oct 25, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• ravinacademy / CVE-2020-0688

  View on GitHub
  Exploitation Script for CVE-2020-0688 "Microsoft Exchange default MachineKeySection deserialize vulnerability"
  ☆11Apr 1, 2020Updated 6 years ago
• passthehashbrowns / hook-integrity-checks

  View on GitHub
  ☆23May 28, 2021Updated 4 years ago
• paranoidninja / Proxy-DLL-Loads

  View on GitHub
  The code is a pingback to the Dark Vortex blog:
  ☆186Jan 26, 2023Updated 3 years ago
• mefellows / winrm-powershell

  View on GitHub
  Run Powershell remotely from the CLI
  ☆11May 1, 2016Updated 9 years ago
• jackullrich / TRunPE

  View on GitHub
  A modified RunPE (process hollowing) technique avoiding the usage of SetThreadContext by appending a TLS section which calls the original…
  ☆97Sep 26, 2019Updated 6 years ago
• alexander-hanel / ida_yara

  View on GitHub
  A python script that can be used to scan data within in an IDB using Yara.
  ☆23Sep 4, 2018Updated 7 years ago
• DKingAlpha / SSDT-Index

  View on GitHub
  Ready-to-use headers for Windows Kernel SSDT indices
  ☆11Apr 12, 2020Updated 5 years ago