malcomvetter / ManagedInjection
A proof of concept for dynamically loading .net assemblies at runtime with only a minimal convention pre-knowledge
☆162Updated 6 years ago
Alternatives and similar repositories for ManagedInjection:
Users that are interested in ManagedInjection are comparing it to the libraries listed below
- A Bring Your Own Land Toolkit that Doubles as a WMI Provider☆285Updated 6 years ago
- ☆216Updated 7 years ago
- Collection of CSharp Assemblies focused on Post-Exploitation Capabilities☆228Updated 5 years ago
- PoC for persisting .NET payloads in Windows Notification Facility (WNF) state names using low-level Windows Kernel API calls.☆151Updated 5 years ago
- Provides In-memory compilation and reflective loading of C# apps for AV evasion.☆369Updated last year
- A repository of some of my Windows 10 Device Guard Bypasses☆136Updated 7 years ago
- SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…☆291Updated 4 years ago
- ☆229Updated 6 years ago
- Tool for injecting a "TCP Relay" managed assembly into unmanaged processes☆116Updated 5 years ago
- POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's s…☆104Updated 7 years ago
- Mario & Luigi - Tools for sniffing Windows Named Pipes communication☆129Updated 8 years ago
- Simple packer for arbitrary data using only .NET API calls. Produces a unique signature with every usage. Standalone program and library.…☆91Updated 5 years ago
- BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET☆146Updated 5 years ago
- ☆61Updated last year
- In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)☆167Updated 7 years ago
- Lateral Movement technique using DCOM and HTA☆232Updated 2 years ago
- Implementation of the .NET Profiler DLL hijack in C#☆98Updated 6 years ago
- Forward local or remote tcp ports through SMB pipes.☆295Updated 4 years ago
- Elite is the client-side component of the Covenant project. Covenant is a .NET command and control framework that aims to highlight the a…☆121Updated last year
- The project is designed as a file resource cloner. Metadata, including digital signature, is extracted from one file and injected into a…☆345Updated 5 months ago
- MSBuildShell, a Powershell Host running within MSBuild.exe☆287Updated 5 years ago
- ☆79Updated 9 years ago
- ☆279Updated 4 years ago
- A list of ways to execute code on Windows using legitimate Windows tools☆307Updated 5 years ago
- CScriptShell, a Powershell Host running within cscript.exe☆160Updated 8 years ago
- Assorted scripts and one off things☆267Updated 8 months ago
- a tool to make it easy and fast to test various forms of injection☆173Updated 5 years ago
- ☆182Updated 3 years ago
- Tool for injecting a "TCP Relay" managed assembly into an unmanaged process☆65Updated 5 years ago
- How To Execute Shellcode via HTA☆137Updated 7 years ago