jborean93 / AmsiProviderLinks
Test AMSI Provider implementation in C#
☆41Updated 5 months ago
Alternatives and similar repositories for AmsiProvider
Users that are interested in AmsiProvider are comparing it to the libraries listed below
Sorting:
- ☆41Updated 10 months ago
- SACL Scanner is a tool designed to scan and analyze SACLs.☆38Updated 3 months ago
- ☆45Updated last year
- This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…☆39Updated 2 weeks ago
- Extract registry and NTDS secrets from local or remote disk images☆43Updated 2 months ago
- Docker container for running CobaltStrike 4.10☆37Updated 8 months ago
- Parse SDDL strings☆36Updated last year
- ☆22Updated 7 months ago
- DFSCoerce exe revisited version with custom authentication☆40Updated last year
- Parser and reconciliation tooling for large Active Directory environments.☆33Updated 3 months ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆70Updated last year
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆30Updated 2 months ago
- BOF to decrypt Signal Desktop chat logs☆65Updated 3 months ago
- Shows which M365 Objects have Privileged Access and what type (i.e. PIM, Direct, Currently Elevated)☆24Updated 2 weeks ago
- ☆29Updated last year
- An Ansible collection that installs an ADFS deployment with optional configurations.☆38Updated 5 months ago
- A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host☆39Updated last year
- ☆60Updated last year
- TokenCert☆97Updated 6 months ago
- Tool to aid in dumping LSASS process remotely☆39Updated 10 months ago
- Folder Or File Delete to Get System Shell on Current Session Desktop☆39Updated 4 months ago
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆38Updated 10 months ago
- ☆52Updated 5 months ago
- C# version of NTLMRawUnHide☆72Updated 2 years ago
- Enumerate information from NTLM authentication enabled web endpoints 🔎☆34Updated last year
- ☆50Updated 7 months ago
- a tiny program to consume from ETW providers for research☆48Updated 5 months ago
- Sniffing files generator☆58Updated 3 months ago
- A cross-platform tool to parse and describe the contents of a raw ntSecurityDescriptor structure☆41Updated last week
- ☆65Updated last year