DPAPI offline decryption utility
☆73Dec 20, 2022Updated 3 years ago
Alternatives and similar repositories for dpapick
Users that are interested in dpapick are comparing it to the libraries listed below
Sorting:
- ☆22Aug 31, 2025Updated 6 months ago
- Windows DPAPI laboratory☆96Mar 5, 2018Updated 8 years ago
- Injection of MSIL using Cecil☆12Jul 28, 2015Updated 10 years ago
- DPAPILAB Next Gen, script collection☆95Aug 26, 2022Updated 3 years ago
- A command line tool that sends its input data to a running procmon instance.☆16Feb 24, 2017Updated 9 years ago
- ☆39Apr 8, 2020Updated 5 years ago
- ☆54Apr 27, 2019Updated 6 years ago
- ☆221Apr 2, 2018Updated 7 years ago
- ☆101Aug 23, 2021Updated 4 years ago
- Demos and presentation from SECArmy Village Grayhat 2020☆37Mar 15, 2023Updated 3 years ago
- a tool to make it easy and fast to test various forms of injection☆174May 2, 2019Updated 6 years ago
- POC for a race condition exploit using directory junctions in Windows☆17Apr 26, 2020Updated 5 years ago
- Lateral Movement technique using DCOM and HTA☆235Oct 18, 2022Updated 3 years ago
- Example code for using named pipe output with beacon ReflectiveDLLs☆121Jun 24, 2020Updated 5 years ago
- Change the line or block comment and bracket styles for various languages.☆11Jun 7, 2024Updated last year
- ETW logging via C++☆21Nov 8, 2019Updated 6 years ago
- ☆19Nov 26, 2020Updated 5 years ago
- C# utility that uses WMI to run "cmd.exe /c netstat -n", save the output to a file, then use SMB to read and delete the file remotely☆38Jan 3, 2020Updated 6 years ago
- .NET 4.0 WinRM API Command Execution☆166Sep 11, 2020Updated 5 years ago
- ☆485Jun 2, 2023Updated 2 years ago
- Windows (ShadowMove) Socket Duplication☆87Apr 19, 2020Updated 5 years ago
- Command line interface to dump LSASS memory to disk via SilentProcessExit☆454Dec 23, 2020Updated 5 years ago
- Terminal emulator for serial port connections☆13Updated this week
- ☆14Oct 25, 2019Updated 6 years ago
- AppContainer and LPAC (Less Privileged AppContainer) Launcher with Capabilities☆60Sep 19, 2024Updated last year
- ☆20Mar 9, 2021Updated 5 years ago
- A tool to exploit .NET Remoting Services☆534Jul 31, 2024Updated last year
- A DLL that serves OutputDebugString content over a TCP connection☆35Sep 23, 2021Updated 4 years ago
- Self Delete DLL☆22Feb 15, 2024Updated 2 years ago
- Methods of C2☆22Jul 15, 2015Updated 10 years ago
- Event metadata collected across all manifest-based ETW providers on Window 10 1903☆32Nov 25, 2019Updated 6 years ago
- Collection of beacon object files for use with Cobalt Strike to facilitate 🐚.☆186Feb 11, 2021Updated 5 years ago
- lateral movement techniques that can be used during red team exercises☆277Jan 13, 2020Updated 6 years ago
- This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System f…☆285May 14, 2020Updated 5 years ago
- A simple proof of concept for detecting use of Cobalt Strike's execute-assembly☆59Apr 1, 2022Updated 3 years ago
- ☆14Apr 16, 2022Updated 3 years ago
- Using "svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc" as trigger☆58Oct 7, 2020Updated 5 years ago
- PoC for proxying COM objects when hijacking☆214Sep 10, 2019Updated 6 years ago
- A simple POC to demonstrate the power of .NET debugging for injection☆73Aug 11, 2020Updated 5 years ago