matthw / malware_analysisLinks
☆18Updated last year
Alternatives and similar repositories for malware_analysis
Users that are interested in malware_analysis are comparing it to the libraries listed below
Sorting:
- ☆30Updated 2 years ago
- WptsExtensions.dll for exploiting DLL hijacking of the task scheduler.☆54Updated 3 years ago
- Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil☆21Updated 2 years ago
- ☆27Updated 6 months ago
- Perform Windows domain enumeration via LDAP☆36Updated 2 years ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆30Updated 2 months ago
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆33Updated 2 years ago
- ☆48Updated 2 years ago
- OSED Practice binary☆24Updated last year
- A vSphere deployment of GOADv2 BETA Testing (v0.1)☆26Updated last year
- ☆23Updated last year
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- Malware Analysis tools☆26Updated 8 months ago
- a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…☆51Updated last year
- Validates priv escalation of AD trusts☆39Updated 2 months ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 2 years ago
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆62Updated 2 years ago
- Searching .evtx logs for remote connections☆23Updated last year
- Proof-of-Concept to evade auditd by writing /proc/PID/mem☆21Updated last year
- This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…☆24Updated 2 years ago
- A collection of tools using OCR to extract potential usernames from RDP screenshots.☆30Updated last year
- Rust implementation of the Process Herpaderping☆24Updated last year
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆32Updated last month
- Items related to the RedELK workshop given at security conferences☆29Updated last year
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Updated 2 years ago
- A script that parses PowerView's output for GPO analysis. Integrated into bloodhound to find misconfigurations of URA, SMB signing etc☆14Updated 5 years ago
- Some of my custom "tools".☆23Updated 3 years ago
- Extension functionality for the NightHawk operator client☆27Updated last year
- A simple rpc2socks alternative in pure Go.☆28Updated 10 months ago
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆32Updated 2 years ago