mbrg / defcon30

Related projects ⓘ

Alternatives and complementary repositories for defcon30

• Octoberfest7 / Presentations
  Slide decks and/or materials from conference presentations
  ☆54Updated 2 years ago
• pgormanDS / hash_spider
  A module for CME that spiders across a domain.
  ☆35Updated 2 years ago
• morRubin / NegoExRelay
  ☆83Updated 2 years ago
• xpn / WAMBam
  Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post
  ☆110Updated last year
• FuzzySecurity / WWHF-WayWest-2022
  ☆38Updated 2 years ago
• Hagrid29 / AbuseAzureAPIPermissions
  Abuse Azure API permissions for red teaming
  ☆58Updated last year
• mattifestation / AntimalwareBlight
  Execute PowerShell code at the antimalware-light protection level.
  ☆137Updated last year
• VirtualAlllocEx / Taskschedule-Persistence-Download-Cradles
  Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged
  ☆86Updated 2 years ago
• bitsadmin / chophound
  Some scripts to support with importing large datasets into BloodHound
  ☆78Updated 11 months ago
• RedSiege / What-The-F
  This repo hosts a poc of how to execute F# code within an unmanaged process
  ☆65Updated 4 months ago
• peiga / DumpThatLSASS
  Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation
  ☆30Updated 2 years ago
• joe-desimone / rep-research
  ☆67Updated 3 months ago
• itm4n / Pentest-Windows
  Windows internals and exploitation tricks
  ☆92Updated 5 months ago
• fozavci / WeaponisingCSharp-Fundamentals
  Weaponising C# - Fundamentals Training Content
  ☆71Updated 3 years ago
• SpikySabra / Kernel-Cactus
  It's pointy and it hurts!
  ☆122Updated 2 years ago
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆95Updated 7 months ago
• mgeeky / msi-shenanigans
  Proof of Concept code and samples presenting emerging threat of MSI installer files.
  ☆77Updated last year
• secureworks / BAADTokenBroker
  ☆53Updated 7 months ago
• daem0nc0re / Abusing_Weak_ACL_on_Certificate_Templates
  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
  ☆119Updated 3 years ago
• deepinstinct / AMSI-Unchained
  Unchain AMSI by patching the provider’s unmonitored memory space
  ☆88Updated last year
• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆53Updated 2 years ago
• 0xthirteen / AssemblyHunter
  Find .net assemblies locally
  ☆88Updated 2 years ago
• csandker / pxethiefy
  ☆36Updated last month
• naksyn / Embedder
  Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies
  ☆114Updated 5 months ago
• bohops / DynamicDotNet
  A collection of various and sundry code snippets that leverage .NET dynamic tradecraft
  ☆135Updated 6 months ago
• lkarlslund / hashmuncher
  Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
  ☆89Updated last year
• codewhitesec / SysmonEnte
  ☆68Updated 2 years ago