leftp / BackupCreds
A C# implementation of dumping credentials from Windows Credential Manager
☆56Updated last year
Related projects ⓘ
Alternatives and complementary repositories for BackupCreds
- C# Tool to interact with MS Exchange based on MS docs☆98Updated last year
- ☆122Updated 11 months ago
- ☆37Updated 2 years ago
- PoC to self-delete a binary in C#☆25Updated 9 months ago
- A C# Solution Source Obfuscator for avoiding AV signatures with minimal user interaction. Powered by the Roslyn C# library.☆70Updated 4 years ago
- My implementation of Halo's Gate technique in C#☆53Updated 2 years ago
- A C# tool to output crackable DPAPI hashes from user MasterKeys☆130Updated 2 months ago
- Cobalt Strike BOF for quser.exe implementation using Windows API☆83Updated last year
- C# Port of LdapRelayScan☆77Updated 2 years ago
- Click Once + App Domain☆62Updated 11 months ago
- SharpElevator is a C# implementation of Elevator for UAC bypass. This UAC bypass was originally discovered by James Forshaw and publishe…☆49Updated 2 years ago
- Quick python script to replace the NtAPI functions within SysWhispers' assembly and header files with random strings☆24Updated 2 years ago
- early cascade injection PoC based on Outflanks blog post, in rust☆48Updated 2 weeks ago
- ☆26Updated 3 months ago
- Tool for playing with Windows Access Token manipulation.☆52Updated last year
- I have documented all of the AMSI patches that I learned till now☆68Updated last year
- Implementation of SpoolSample without rDLL☆31Updated 4 years ago
- Beacon Object Files (not Buffer Overflows)☆51Updated last year
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆77Updated last year
- Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt☆18Updated last year
- ☆35Updated 2 years ago
- Modified versions of the Cobalt Strike Process Injection Kit☆88Updated 9 months ago
- ☆104Updated this week
- An insecurely implemented and installed Windows service for emulating elevation of privileges vulnerabilities☆44Updated 2 years ago
- Just another ntdll unhooking using Parun's Fart technique☆72Updated last year
- stack spoofing☆53Updated this week
- Simple .NET loader for loading and executing Powershell payloads☆15Updated 3 years ago
- ☆49Updated 5 months ago
- TokenCert☆83Updated last week
- Creation and removal of Defender path exclusions and exceptions in C#.☆30Updated last year