karttoon / trigenLinks
Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.
☆204Updated 8 years ago
Alternatives and similar repositories for trigen
Users that are interested in trigen are comparing it to the libraries listed below
Sorting:
- ☆255Updated 6 years ago
- Evading WinDefender ATP credential-theft☆256Updated 5 years ago
- Shellcoding utilities☆223Updated 4 years ago
- Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().☆217Updated 5 years ago
- ☆151Updated 4 years ago
- Dll that can be used for side loading and other attack vector.☆202Updated 4 years ago
- Create a minidump of the LSASS process from memory☆260Updated 2 years ago
- Collection of awesome Cobalt Strike Aggressor Scripts. All credit due to the authors☆154Updated 6 years ago
- A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…☆272Updated 2 years ago
- A meterpreter extension for applying hooks to avoid windows defender memory scans☆246Updated 4 years ago
- C# Implementation of the Hell's Gate VX Technique☆215Updated 5 years ago
- CSHARP DCOM Fun☆132Updated 5 years ago
- Custom Metasploit post module to executing a .NET Assembly from Meterpreter session☆346Updated 4 years ago
- Cobalt Strike Aggressor extension for Visual Studio Code☆134Updated last year
- lateral movement techniques that can be used during red team exercises☆273Updated 5 years ago
- Code Exec via Excel☆87Updated 7 years ago
- Example DLL to load from Windows NetShell☆180Updated 8 years ago
- A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…☆91Updated 5 years ago
- GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects☆248Updated 4 years ago
- Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…☆243Updated 3 years ago
- Lateral Movement technique using DCOM and HTA☆232Updated 2 years ago
- Scripts for performing and detecting parent PID spoofing☆147Updated 5 years ago
- DLL Generator for side loading attack☆173Updated 6 years ago
- Run Rubeus via Rundll32☆202Updated 5 years ago
- PoC for proxying COM objects when hijacking☆209Updated 5 years ago
- Collection of scripts, binaries and the like to aid in WhiteList Evasion on a Microsoft Windows Network.☆128Updated 10 years ago
- Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.☆147Updated 4 years ago
- POC for NetworkService PrivEsc☆126Updated 5 years ago
- A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …☆85Updated 5 years ago
- C# Shellcode Runner to execute shellcode via CreateRemoteThread and SetThreadContext to evade Get-InjectedThread☆119Updated 6 years ago