momo1239 / buffshark-shellcode-runner
Shellcode runner to execute malicious payload and bypass AV
☆14Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for buffshark-shellcode-runner
- A .NET implementation to dump SAM / SECURITY / SYSTEM registry hives☆48Updated 4 years ago
- .Net Assembly loader for the [CVE-2021-42287 - CVE-2021-42278] Scanner & Exploit noPac☆60Updated last year
- Using syscall to load shellcode, Evasion techniques☆26Updated 3 years ago
- Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3☆47Updated 2 years ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 2 years ago
- Active Directory certificate abuse.☆36Updated 2 years ago
- A spin-off research project. Cobalt Strike x Notion collab 2022☆52Updated 2 years ago
- Exploit for Microsoft SharePoint 2019☆13Updated 10 months ago
- Golng version of SharpDump that can be used to extract LSASS or any other proces. Provides token elevation prior to creating dump of high…☆21Updated 4 years ago
- C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)☆46Updated last year
- Secretsdump C# version only supporting local (live) operation☆47Updated last year
- Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.☆48Updated 2 years ago
- List/Read contents of Zip files (in memory and without extraction) using CobaltStrike's Execute-Assembly☆58Updated 2 years ago
- C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD…☆36Updated last year
- ProcExp Driver (Ab)use☆20Updated last year
- Proof of Concept for EFSRPC Arbitrary File Upload (CVE-2021-43893)☆61Updated 2 years ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆30Updated 2 years ago
- C# wrapper for ligolo☆16Updated 2 years ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆53Updated 2 years ago
- Tool to start processes as SYSTEM using token duplication☆37Updated 4 years ago
- Microsoft Exchange password spray tool with proxy support.☆40Updated 3 years ago
- ☆58Updated 2 years ago
- A BOF port of the research of @thefLinkk and @codewhitesec☆94Updated 3 years ago
- A collection of Cobalt Strike Malleable C2 profiles☆34Updated 4 years ago
- Collect & Optimize awesome CobaltStrike aggressor scripts, hope to create a All-In-One framework.☆37Updated 4 years ago
- CallBack-Techniques for Shellcode execution ported to Nim☆56Updated 3 years ago