jordanbtucker / dpapick

Related projects: ⓘ

• dfirfpi / dpapilab
  Windows DPAPI laboratory
  ☆85Updated 6 years ago
• GoSecure / DLLPasswordFilterImplant
  DLL Password Filter Implant with Exfiltration Capabilities
  ☆133Updated 4 years ago
• cobbr / InsecurePowerShell
  InsecurePowerShell is PowerShell with some security features removed.
  ☆102Updated 6 years ago
• mattifestation / PoCSubjectInterfacePackage
  A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.
  ☆92Updated 6 years ago
• OmerYa / Named-Pipe-Sniffer
  Mario & Luigi - Tools for sniffing Windows Named Pipes communication
  ☆129Updated 7 years ago
• nccgroup / SCOMDecrypt
  SCOMDecrypt is a tool to decrypt stored RunAs credentials from SCOM servers
  ☆118Updated 10 months ago
• moohax / xllpoc
  Code Exec via Excel
  ☆83Updated 7 years ago
• NetSPI / MonkeyWorks
  ☆60Updated 9 months ago
• SafeBreach-Labs / SimpleBITSServer
  A simple python implementation of a BITS server.
  ☆103Updated 2 years ago
• FuzzySecurity / BlueHatIL-2020
  BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET
  ☆143Updated 4 years ago
• palantir / exploitguard
  Documentation and supporting script sample for Windows Exploit Guard
  ☆148Updated 2 years ago
• SpiderLabs / SCShell
  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
  ☆105Updated 4 years ago
• med0x2e / NoAmci
  Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().
  ☆213Updated 4 years ago
• matterpreter / Shhmon
  Neutering Sysmon via driver unload
  ☆219Updated last year
• dirkjanm / ROADtoken
  ☆76Updated 3 years ago
• FuzzySecurity / Dendrobate
  Managed code hooking template.
  ☆127Updated 2 years ago
• tyranid / DeviceGuardBypasses
  A repository of some of my Windows 10 Device Guard Bypasses
  ☆133Updated 7 years ago
• vletoux / NTLMInjector
  In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)
  ☆161Updated 7 years ago
• tyranid / ExploitDotNetDCOM
  A tool to exploit .NET DCOM for EoP and RCE. Is fixed in latest versions of the .NET.
  ☆84Updated 9 years ago
• xforcered / Dendrobate
  Managed code hooking template.
  ☆106Updated 3 years ago
• rvrsh3ll / SharpCOM
  CSHARP DCOM Fun
  ☆120Updated 5 years ago
• homjxi0e / ReaCOM
  ReaCOM has got a lot of tools to use and is related to component object model
  ☆73Updated 4 years ago
• jborean93 / dpapi-ng
  Python DPAPI NG Decryptor for non-Windows Platforms
  ☆53Updated last year
• RemiEscourrou / Invoke-Leghorn
  Leghorn code for PKI abuse
  ☆31Updated 3 years ago
• rvrsh3ll / MSBuildAPICaller
  MSBuild Without MSBuild.exe
  ☆155Updated 3 years ago
• elnerd / Get-NetNTLM
  Powershell module to get the NetNTLMv2 hash of the current user
  ☆92Updated 2 years ago
• TheWover / Manager
  Library of tools and examples for loading/bootstrapping managed code from unmanaged code in .NET
  ☆62Updated 4 years ago
• rasta-mouse / RuralBishop
  D/Invoke port of UrbanBishop
  ☆104Updated 4 years ago
• Arno0x / TCPRelayInjecter2
  Tool for injecting a "TCP Relay" managed assembly into an unmanaged process
  ☆62Updated 5 years ago
• Cyb3rWard0g / WinRpcFunctions
  ☆68Updated 2 years ago