A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.
☆101Jan 7, 2018Updated 8 years ago
Alternatives and similar repositories for PoCSubjectInterfacePackage
Users that are interested in PoCSubjectInterfacePackage are comparing it to the libraries listed below
Sorting:
- Binaries, PowerShell scripts and information about Digital Signature Hijacking.☆226Nov 7, 2017Updated 8 years ago
- A reference Device Guard code integrity policy consisting of FilePublisher deny rules for published Device Guard configuration bypasses☆115May 27, 2017Updated 8 years ago
- Collection of CSharp Assemblies focused on Post-Exploitation Capabilities☆230May 30, 2019Updated 6 years ago
- Making shellcode UD - https://osandamalith.com☆25Jul 31, 2016Updated 9 years ago
- ☆13Feb 25, 2014Updated 12 years ago
- A repository of some of my Windows 10 Device Guard Bypasses☆139Aug 3, 2017Updated 8 years ago
- Common Malware Techniques☆13Mar 26, 2023Updated 2 years ago
- Post-explotation Hacks☆14Jan 6, 2019Updated 7 years ago
- Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.☆22Sep 4, 2023Updated 2 years ago
- A simple shellcode runner☆23Apr 20, 2014Updated 11 years ago
- ☆16Nov 10, 2015Updated 10 years ago
- ☆21May 10, 2017Updated 8 years ago
- Tool that dumps beacon frames to a pcap file. Works on Windows Vista or Later with any Wireless Card.☆27Mar 19, 2022Updated 3 years ago
- A library for integrating communication channels with the Cobalt Strike External C2 server☆290Nov 23, 2017Updated 8 years ago
- Sysmon Tools for PowerShell☆233Aug 17, 2018Updated 7 years ago
- Windows hidden thread suspend POC with code injection☆12May 27, 2017Updated 8 years ago
- Protect your servers with a secret header☆29Jun 12, 2020Updated 5 years ago
- Services and Drivers control application☆19Jul 24, 2017Updated 8 years ago
- ZeroRemote Trojan SRC Extract☆19Mar 1, 2017Updated 9 years ago
- B-Sides CBR 2018 talk about group policy and Grouper☆38May 3, 2019Updated 6 years ago
- ☆33Aug 10, 2019Updated 6 years ago
- Hidden module/dll detector for windows apps☆15May 21, 2017Updated 8 years ago
- Get a list of installed software in a safe manner☆11Aug 7, 2017Updated 8 years ago
- D-RAT SRC Extract☆12Dec 24, 2016Updated 9 years ago
- ShellcodeVM☆15Jun 20, 2016Updated 9 years ago
- ☆408Mar 1, 2017Updated 9 years ago
- ☆220Apr 2, 2018Updated 7 years ago
- ☆34Apr 5, 2017Updated 8 years ago
- A .NET tool that uses AppDomain's to enable dynamic execution and escape detection.☆29Nov 25, 2019Updated 6 years ago
- A collection of PowerShell Modules for BloodHound/Empire Orchestration☆109Sep 26, 2017Updated 8 years ago
- Module to provide PowerShell functions that abstract Win32 API functions☆250Jun 6, 2024Updated last year
- A tool to create a JScript file which loads a .NET v2 assembly from memory.☆1,317Jan 18, 2021Updated 5 years ago
- Automate AV evasion by calling AMSI☆88May 31, 2023Updated 2 years ago
- Securing Data Analytics on Intel SGX using Randomization☆13Aug 30, 2017Updated 8 years ago
- AppXSvc Arbitrary File Security Descriptor Overwrite EoP☆20Sep 15, 2019Updated 6 years ago
- Multi-purpose proof-of-concept tool based on CPU-Z CVE-2017-15303☆110Feb 25, 2018Updated 8 years ago
- ☆84May 19, 2015Updated 10 years ago
- PowerShellMethodAuditor listens to the PowerShell ETW provider and logs PowerShell method invocations.☆37Sep 19, 2017Updated 8 years ago
- A set of demos and a PowerShell module to interact with DotNetInterop.☆69Apr 7, 2018Updated 7 years ago