A portable C# utility for enumerating local and remote windows sessions
☆55Jan 1, 2026Updated last month
Alternatives and similar repositories for SessionView
Users that are interested in SessionView are comparing it to the libraries listed below
Sorting:
- Prevent in-process process termination by patching exit APIs☆63Nov 9, 2025Updated 3 months ago
- Golang Automation Framework for Cobalt Strike using the Rest API☆56Dec 4, 2025Updated 2 months ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆123Jan 17, 2026Updated last month
- GPOAnalyzer is a tool designed to assist in parsing domain Group Policy Object (GPO) files located in the SYSVOL directory.☆28Jun 14, 2024Updated last year
- A Beacon Object File (BOF) that performs the complete ESC1 attack chain in a single execution: certificate request with arbitrary SAN (+S…☆116Dec 21, 2025Updated 2 months ago
- sideloading PoC using onedrive.exe & version.dll☆91Oct 30, 2025Updated 3 months ago
- Windows Access token manipulation tool made in C#☆24Aug 24, 2025Updated 6 months ago
- A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …☆163Nov 2, 2025Updated 3 months ago
- Vectored Exception Handling Squared☆29Dec 27, 2025Updated 2 months ago
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆50Jan 25, 2025Updated last year
- Collection of BOFs created for red team/adversary engagements. Created to be small and interchangeable, for quick recon or eventing.☆235Feb 20, 2026Updated last week
- sigreturn-oriented programming (SROP) based sleep obfuscation poc for Linux☆66Dec 15, 2025Updated 2 months ago
- ☆55May 31, 2025Updated 8 months ago
- Host CLR and run .NET binaries using Rust☆151Dec 23, 2025Updated 2 months ago
- List web account manager (WAM) accounts added to the current profile☆22Dec 11, 2025Updated 2 months ago
- A C and Go /proc/pid/maps cloak of invisibilty for shared object files☆21Nov 19, 2025Updated 3 months ago
- Beacon Object File (BOF) for identifying dependent child services of a given parent.☆18Jun 20, 2025Updated 8 months ago
- ☆169Oct 21, 2025Updated 4 months ago
- Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover☆85Oct 20, 2025Updated 4 months ago
- ☆51Jun 28, 2025Updated 7 months ago
- Parser and reconciliation tooling for large Active Directory environments.☆33Feb 18, 2025Updated last year
- ☆26Nov 8, 2024Updated last year
- Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does☆95Jul 3, 2025Updated 7 months ago
- BOF to decrypt Signal Desktop chat logs☆71Feb 20, 2025Updated last year
- ForsHops☆152Mar 25, 2025Updated 11 months ago
- ☆11Feb 12, 2023Updated 3 years ago
- Selective In-Memory Syscall Unhooking, a stealthy method to bypass user-mode hooks in ntdll.dll☆25Jul 9, 2025Updated 7 months ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆81Jun 21, 2025Updated 8 months ago
- TokenCert☆102Nov 15, 2024Updated last year
- Internal Monologue BOF☆79Dec 28, 2024Updated last year
- ☆39Nov 25, 2025Updated 3 months ago
- Proof of Concept (PoC) implant for creating custom Cobalt Strike Beacons☆170Feb 11, 2026Updated 2 weeks ago
- ☆138Nov 17, 2025Updated 3 months ago
- Local SYSTEM auth trigger for relaying☆168Jul 22, 2025Updated 7 months ago
- Dump LSASS via physical memory read primitives in vulnerable kernel drivers☆261Feb 2, 2026Updated 3 weeks ago
- A PoC .NET-specific process injection tool☆58Mar 17, 2024Updated last year
- ☆126Sep 1, 2024Updated last year
- Extension functionality for the NightHawk operator client☆26Nov 3, 2023Updated 2 years ago
- ☆100Sep 1, 2024Updated last year