kavika13 / RemCom

Related projects: ⓘ

• leechristensen / UnmanagedPowerShell
  Executes PowerShell from an unmanaged process
  ☆466Updated 8 years ago
• cobbr / PSAmsi
  PSAmsi is a tool for auditing and defeating AMSI signatures.
  ☆386Updated 6 years ago
• anthemtotheego / SharpExec
  ☆347Updated 2 years ago
• GhostPack / SharpDump
  SharpDump is a C# port of PowerSploit's Out-Minidump.ps1 functionality.
  ☆657Updated 5 years ago
• EmpireProject / PSInject
  Inject PowerShell into any process
  ☆219Updated 5 years ago
• Cn33liz / MSBuildShell
  ☆279Updated this week
• mandiant / DueDLLigence
  ☆461Updated last year
• HarmJ0y / DAMP
  The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification
  ☆373Updated 5 years ago
• danielbohannon / Invoke-CradleCrafter
  PowerShell Remote Download Cradle Generator & Obfuscator
  ☆817Updated 6 years ago
• csababarta / ntdsxtract
  Active Directory forensic framework
  ☆312Updated 2 years ago
• Sw4mpf0x / PowerLurk
  Malicious WMI Events using PowerShell
  ☆363Updated 8 years ago
• RedSiege / WMIOps
  This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.
  ☆381Updated 2 months ago
• Ben0xA / nps
  Not PowerShell
  ☆441Updated 7 years ago
• hoangprod / AndrewSpecial
  AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.
  ☆382Updated 5 years ago
• Cybereason / siofra
  ☆470Updated 6 years ago
• fox-it / Invoke-ACLPwn
  ☆510Updated 2 years ago
• RedSiege / WMImplant
  This is a PowerShell based tool that is designed to act like a RAT. Its interface is that of a shell where any command that is supported …
  ☆798Updated 2 months ago
• mdsecactivebreach / CACTUSTORCH
  CACTUSTORCH: Payload Generation for Adversary Simulations
  ☆994Updated 6 years ago
• GhostPack / SharpWMI
  SharpWMI is a C# implementation of various WMI functionality.
  ☆746Updated 3 years ago
• mandiant / OfficePurge
  ☆258Updated last year
• vletoux / MakeMeEnterpriseAdmin
  ☆251Updated 2 years ago
• two06 / Inception
  Provides In-memory compilation and reflective loading of C# apps for AV evasion.
  ☆366Updated 6 months ago
• ramen0x3f / AggressorScripts
  ☆271Updated 2 years ago
• gdedrouas / Exchange-AD-Privesc
  Exchange privilege escalations to Active Directory
  ☆722Updated last year
• nccgroup / acCOMplice
  Tools for discovery and abuse of COM hijacks
  ☆282Updated 4 years ago
• GhostPack / SharpRoast
  DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.
  ☆252Updated 5 years ago
• fullmetalcache / PowerLine
  ☆304Updated 5 years ago
• ionescu007 / faxhell
  A Bind Shell Using the Fax Service and a DLL Hijack
  ☆317Updated 4 years ago
• mubix / netview
  Netview enumerates systems using WinAPI calls
  ☆288Updated 2 years ago