malcomvetter / ManagedInjection
A proof of concept for dynamically loading .net assemblies at runtime with only a minimal convention pre-knowledge
☆162Updated 6 years ago
Alternatives and similar repositories for ManagedInjection:
Users that are interested in ManagedInjection are comparing it to the libraries listed below
- ☆213Updated 6 years ago
- A Bring Your Own Land Toolkit that Doubles as a WMI Provider☆285Updated 6 years ago
- Collection of CSharp Assemblies focused on Post-Exploitation Capabilities☆224Updated 5 years ago
- PoC for persisting .NET payloads in Windows Notification Facility (WNF) state names using low-level Windows Kernel API calls.☆148Updated 5 years ago
- SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…☆291Updated 4 years ago
- BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET☆145Updated 5 years ago
- ☆179Updated 3 years ago
- CScriptShell, a Powershell Host running within cscript.exe☆160Updated 7 years ago
- Simple packer for arbitrary data using only .NET API calls. Produces a unique signature with every usage. Standalone program and library.…☆90Updated 5 years ago
- SharpShell is a proof-of-concept offensive C# scripting engine that utilizes the Rosyln C# compiler to quickly cross-compile .NET Framew…☆125Updated 6 years ago
- POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's s…☆103Updated 7 years ago
- Mario & Luigi - Tools for sniffing Windows Named Pipes communication☆129Updated 8 years ago
- MSBuildShell, a Powershell Host running within MSBuild.exe☆284Updated 5 years ago
- Implementation of the .NET Profiler DLL hijack in C#☆98Updated 6 years ago
- Provides In-memory compilation and reflective loading of C# apps for AV evasion.☆368Updated 11 months ago
- ☆61Updated last year
- Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.☆156Updated 5 years ago
- Elite is the client-side component of the Covenant project. Covenant is a .NET command and control framework that aims to highlight the a…☆120Updated last year
- C# code to run shellcode in a sneaky way☆90Updated 4 years ago
- ☆278Updated 4 years ago
- A repository of some of my Windows 10 Device Guard Bypasses☆134Updated 7 years ago
- SharpBox is a C# tool for compressing, encrypting, and exfiltrating data to DropBox using the DropBox API.☆109Updated 4 years ago
- ☆229Updated 6 years ago
- Parse PowerShell and Security event logs for sensitive information.☆124Updated 5 years ago
- Lateral Movement technique using DCOM and HTA☆231Updated 2 years ago
- A tool to exploit .NET DCOM for EoP and RCE. Is fixed in latest versions of the .NET.☆87Updated 10 years ago
- A C# implementation of PrivExchange by @_dirkjan.☆158Updated 5 years ago
- DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.☆254Updated 6 years ago
- A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.☆95Updated 7 years ago
- The full story of the CLR implementation of Meterpreter☆151Updated 4 years ago