malcomvetter / ManagedInjection
A proof of concept for dynamically loading .net assemblies at runtime with only a minimal convention pre-knowledge
☆162Updated 6 years ago
Alternatives and similar repositories for ManagedInjection:
Users that are interested in ManagedInjection are comparing it to the libraries listed below
- A Bring Your Own Land Toolkit that Doubles as a WMI Provider☆285Updated 6 years ago
- Collection of CSharp Assemblies focused on Post-Exploitation Capabilities☆225Updated 5 years ago
- PoC for persisting .NET payloads in Windows Notification Facility (WNF) state names using low-level Windows Kernel API calls.☆149Updated 5 years ago
- ☆213Updated 6 years ago
- Mario & Luigi - Tools for sniffing Windows Named Pipes communication☆129Updated 8 years ago
- A repository of some of my Windows 10 Device Guard Bypasses☆135Updated 7 years ago
- SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…☆289Updated 4 years ago
- Simple packer for arbitrary data using only .NET API calls. Produces a unique signature with every usage. Standalone program and library.…☆91Updated 5 years ago
- BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET☆145Updated 5 years ago
- ☆229Updated 6 years ago
- ☆278Updated 4 years ago
- ☆61Updated last year
- Tool for injecting a "TCP Relay" managed assembly into unmanaged processes☆116Updated 5 years ago
- MSBuildShell, a Powershell Host running within MSBuild.exe☆284Updated 5 years ago
- Elite is the client-side component of the Covenant project. Covenant is a .NET command and control framework that aims to highlight the a…☆120Updated last year
- A tool to exploit .NET DCOM for EoP and RCE. Is fixed in latest versions of the .NET.☆87Updated 10 years ago
- CScriptShell, a Powershell Host running within cscript.exe☆160Updated 7 years ago
- Lateral Movement technique using DCOM and HTA☆230Updated 2 years ago
- Implementation of the .NET Profiler DLL hijack in C#☆98Updated 6 years ago
- ☆181Updated 3 years ago
- POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's s…☆103Updated 7 years ago
- The full story of the CLR implementation of Meterpreter☆152Updated 4 years ago
- SharpGen is a .NET Core console application that utilizes the Rosyln C# compiler to quickly cross-compile .NET Framework console applica…☆295Updated 3 years ago
- Sample use cases of the .NET native code hooking technique☆209Updated 7 years ago
- Provides In-memory compilation and reflective loading of C# apps for AV evasion.☆368Updated last year
- Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.☆156Updated 5 years ago
- A tool to run .Net DLLs from the command line☆102Updated 6 years ago
- SharpShell is a proof-of-concept offensive C# scripting engine that utilizes the Rosyln C# compiler to quickly cross-compile .NET Framew…☆125Updated 6 years ago
- DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.☆252Updated 6 years ago
- A list of ways to execute code on Windows using legitimate Windows tools☆304Updated 5 years ago