mlcsec / FormThiefLinks
Spoofing desktop login applications with WinForms and WPF
☆176Updated last year
Alternatives and similar repositories for FormThief
Users that are interested in FormThief are comparing it to the libraries listed below
Sorting:
- ☆146Updated last year
- A tool to modify SCCM remote control settings on the client machine, enabling remote control without permission prompts or notifications.…☆112Updated last year
- Two in one, patch lifetime powershell console, no more etw and amsi!☆101Updated 8 months ago
- Source generator to add D/Invoke and indirect syscall methods to a C# project.☆185Updated last year
- ☆223Updated 2 years ago
- ☆120Updated 9 months ago
- Build sneaky & malicious LNK files.☆155Updated 5 months ago
- DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.☆101Updated 2 years ago
- Small project to facilitate creation of .lnk payloads☆75Updated 3 years ago
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆119Updated last year
- Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies☆123Updated last year
- Hide your P/Invoke signatures through other people's signed assemblies☆212Updated last year
- Find .net assemblies locally☆129Updated 3 years ago
- Simple C# Redirector☆93Updated 4 months ago
- Various one-off pentesting projects written in Nim. Updates happen on a whim.☆161Updated 5 months ago
- Collection of random RedTeam scripts.☆211Updated last year
- A collection of various and sundry code snippets that leverage .NET dynamic tradecraft☆146Updated last year
- Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"☆146Updated last year
- ☆137Updated 11 months ago
- A tool to Impersonate logged on users without touching LSASS (Including non-Interactive sessions).☆93Updated 3 years ago
- ☆121Updated last year
- GregsBestFriend process injection code created from the White Knight Labs Offensive Development course☆205Updated 2 years ago
- ☆186Updated 6 months ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆211Updated last year
- Decrypt Veeam database passwords☆218Updated last month
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆155Updated last year
- Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.☆138Updated 3 years ago
- WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"☆121Updated last year
- Patching AmsiOpenSession by forcing an error branching☆153Updated 2 years ago
- A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.☆134Updated 11 months ago