A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.
☆101Jan 7, 2018Updated 8 years ago
Alternatives and similar repositories for PoCSubjectInterfacePackage
Users that are interested in PoCSubjectInterfacePackage are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Binaries, PowerShell scripts and information about Digital Signature Hijacking.☆227Nov 7, 2017Updated 8 years ago
- Collection of CSharp Assemblies focused on Post-Exploitation Capabilities☆231May 30, 2019Updated 6 years ago
- A reference Device Guard code integrity policy consisting of FilePublisher deny rules for published Device Guard configuration bypasses☆115May 27, 2017Updated 8 years ago
- ☆13Feb 25, 2014Updated 12 years ago
- Common Malware Techniques☆13Mar 26, 2023Updated 2 years ago
- A repository of some of my Windows 10 Device Guard Bypasses☆139Aug 3, 2017Updated 8 years ago
- Authenticode for PNG files☆11Jun 8, 2020Updated 5 years ago
- A simple shellcode runner☆23Apr 20, 2014Updated 11 years ago
- Post-explotation Hacks☆14Jan 6, 2019Updated 7 years ago
- Making shellcode UD - https://osandamalith.com☆25Jul 31, 2016Updated 9 years ago
- ☆16Nov 10, 2015Updated 10 years ago
- Sysmon Tools for PowerShell☆233Aug 17, 2018Updated 7 years ago
- Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.☆22Sep 4, 2023Updated 2 years ago
- ☆21May 10, 2017Updated 8 years ago
- Tool that dumps beacon frames to a pcap file. Works on Windows Vista or Later with any Wireless Card.☆27Mar 19, 2022Updated 4 years ago
- A library for integrating communication channels with the Cobalt Strike External C2 server☆290Nov 23, 2017Updated 8 years ago
- A .NET tool that uses AppDomain's to enable dynamic execution and escape detection.☆29Nov 25, 2019Updated 6 years ago
- Windows hidden thread suspend POC with code injection☆12May 27, 2017Updated 8 years ago
- A PowerShell module to assist in parsing and managing catalog files.☆22Jan 12, 2017Updated 9 years ago
- ☆221Apr 2, 2018Updated 7 years ago
- BCD is a module to interact with boot configuration data (BCD) either locally or remotely using the ROOT/WMI:Bcd* WMI classes. The functi…☆63Aug 16, 2020Updated 5 years ago
- Module to provide PowerShell functions that abstract Win32 API functions☆251Jun 6, 2024Updated last year
- Automate AV evasion by calling AMSI☆88May 31, 2023Updated 2 years ago
- Services and Drivers control application☆19Jul 24, 2017Updated 8 years ago
- Hidden module/dll detector for windows apps☆15May 21, 2017Updated 8 years ago
- ☆22Jul 7, 2017Updated 8 years ago
- Protect your servers with a secret header☆29Jun 12, 2020Updated 5 years ago
- A set of tools to retrieve and parse TCG measured boot logs. Microsoft refers to these as Windows Boot Confirguration Logs (WBCL). In ord…☆69Jun 17, 2018Updated 7 years ago
- The project is designed as a file resource cloner. Metadata, including digital signature, is extracted from one file and injected into a…☆366Nov 19, 2024Updated last year
- ☆408Mar 1, 2017Updated 9 years ago
- A tool to create a JScript file which loads a .NET v2 assembly from memory.☆1,318Jan 18, 2021Updated 5 years ago
- PowerShellMethodAuditor listens to the PowerShell ETW provider and logs PowerShell method invocations.☆37Sep 19, 2017Updated 8 years ago
- ShellcodeVM☆15Jun 20, 2016Updated 9 years ago
- ☆33Aug 10, 2019Updated 6 years ago
- A set of demos and a PowerShell module to interact with DotNetInterop.☆69Apr 7, 2018Updated 7 years ago
- Position Independent Windows Shellcode Written in C☆297Aug 28, 2018Updated 7 years ago
- Get a list of installed software in a safe manner☆11Aug 7, 2017Updated 8 years ago
- The Network project is a C++ encapsulation of WinSock2 to form a lightweight network library; The Graphics project is a C++ encapsulation…☆13Oct 31, 2017Updated 8 years ago
- ☆34Apr 5, 2017Updated 8 years ago