nccgroup / WindowsDACLEnumProject
A collection of tools to enumerate and analyse Windows DACLs
☆106Updated 9 years ago
Related projects ⓘ
Alternatives and complementary repositories for WindowsDACLEnumProject
- A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.☆93Updated 6 years ago
- POSHSPY backdoor code☆43Updated 7 years ago
- ReaCOM has got a lot of tools to use and is related to component object model☆73Updated 4 years ago
- ☆53Updated 6 years ago
- Community maintained list of most popular HIPS service and process names on a Windows Platform.☆43Updated 2 years ago
- ☆23Updated 8 years ago
- Public documents related to my talk "Bypass Windows Exploit Guard ASR" at Offensive Con 2019.☆93Updated 5 years ago
- ☆45Updated 6 years ago
- Shim database persistence (Fin7 TTP)☆36Updated 4 years ago
- APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )☆108Updated 6 years ago
- Use bitsadmin to maintain persistence and bypass Autoruns☆66Updated 7 years ago
- a program to detect reflective dll injection on a live machine☆74Updated 8 years ago
- few months old but better than nothing☆58Updated 2 years ago
- ☆53Updated 7 years ago
- ☆89Updated 3 years ago
- ☆62Updated 8 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆75Updated 6 years ago
- A repository of some of my Windows 10 Device Guard Bypasses☆133Updated 7 years ago
- A C# tool for enumerating remote access policies through group policy.☆71Updated 5 years ago
- A tool to create COM class/interface relationships in neo4j☆47Updated 2 years ago
- A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…☆42Updated 3 years ago
- Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test …☆57Updated 5 years ago
- ☆84Updated 8 years ago
- A C# implementation of the PowerShell Empire Agent☆72Updated 5 years ago
- Exercises for C# Workshop at Wild West Hackin' Fest 2018 & 2019.☆64Updated 5 years ago
- MS17-012 - COM Session Moniker EoP Exploit running within MSBuild.exe☆59Updated 7 years ago