jborean93 / AmsiProviderLinks
Test AMSI Provider implementation in C#
☆42Updated 9 months ago
Alternatives and similar repositories for AmsiProvider
Users that are interested in AmsiProvider are comparing it to the libraries listed below
Sorting:
- Parser and reconciliation tooling for large Active Directory environments.☆33Updated 7 months ago
- SCEP request tool for AD CS and Intune☆69Updated 2 months ago
- Parse SDDL strings☆36Updated last year
- This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…☆51Updated 4 months ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆74Updated last year
- RPC to WebClient startup☆51Updated last month
- TokenCert☆100Updated 10 months ago
- ☆49Updated 3 months ago
- Impersonate Tokens using only NTAPI functions☆80Updated 6 months ago
- Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does☆29Updated 3 months ago
- Demo code JavaScript POC that tricks user into sending Windows hash to responder☆35Updated 3 months ago
- Clipboard for Command and Control between VDI, RDP and Others on Windows☆48Updated 3 months ago
- Validates priv escalation of AD trusts☆47Updated 6 months ago
- A C# implementation of dumping credentials from Windows Credential Manager☆60Updated 2 years ago
- ☆51Updated 11 months ago
- PoC script to demonstrate collection of SCCM attack paths that can be viewed in BH with OpenGraph☆24Updated 2 months ago
- rust port of pspy with support for process monitoring over dbus☆35Updated 3 months ago
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆37Updated 5 months ago
- An Ansible collection that installs an ADFS deployment with optional configurations.☆42Updated 9 months ago
- A simple tool to identify WDS servers in Active Directory☆30Updated last month
- A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.☆56Updated 5 months ago
- Add Shadow Credentials to a target object by editing their msDS-KeyCredentialLink attribute☆23Updated last year
- ☆36Updated 8 months ago
- Tool to enumerate unregistered reply URLs for single and multitenant apps in Azure☆15Updated 8 months ago
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆39Updated last year
- SACL Scanner is a tool designed to scan and analyze SACLs.☆44Updated 7 months ago
- ☆53Updated last week
- ☆37Updated 11 months ago
- Sniffing files generator☆59Updated 7 months ago
- A python library to create BloodHound OpenGraphs☆25Updated 2 weeks ago