nccgroup / memgrep

Related projects: ⓘ

• jaredhaight / ReflectCmd
  A simple reflective dll example
  ☆18Updated 7 years ago
• johnjohnsp1 / MimkatzCollider
  Mimikatz HashClash
  ☆12Updated 9 years ago
• byt3bl33d3r / Invoke-AutoIt
  Loads the AutoIt DLL and PowerShell assemblies into memory and executes the specified keystrokes
  ☆60Updated 7 years ago
• Cn33liz / SmashedPotato
  ☆76Updated this week
• securemode / Get-DefenderExcludes
  ☆20Updated this week
• matthewdunwoody / PS_logging_reg
  A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed
  ☆16Updated 8 years ago
• leoloobeek / GoGreen
  Environmental (and http) keying for scripting languages
  ☆39Updated 5 years ago
• sekirkity / SeeCLRly
  Fileless SQL Server CLR-based Custom Stored Procedure Command Execution
  ☆34Updated 7 years ago
• jeperez / windows-operating-system-archaeology
  windows-operating-system-archaeology @Enigma0x3 @subTee
  ☆44Updated 7 years ago
• carnal0wnage / python_lnk_maker
  Make Windows LNK file with python (pylnk)
  ☆66Updated 8 years ago
• malcomvetter / SneakyService
  A simple, minimal C# windows service implementation that can be used to demonstrate privilege escalation from misconfigured windows servi…
  ☆14Updated 9 years ago
• clr2of8 / EvilClippy
  A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…
  ☆20Updated 3 years ago
• Fist0urs / kerberom
  Kerberom is a tool aimed to retrieve ARC4-HMAC'ed encrypted Tickets Granting Service (TGS) of accounts having a Service Principal Name (S…
  ☆34Updated 6 years ago
• Neo23x0 / webshell-intel
  Scan web server for known webshell names and responses
  ☆50Updated 8 years ago
• digipenguin / powerkatz
  ☆17Updated 9 years ago
• kafkaesqu3 / subtee-gist-mirror
  few months old but better than nothing
  ☆58Updated 2 years ago
• kmkz / Sources
  Random source codes
  ☆25Updated 4 years ago
• vysecurity / Invoke-ProcessScan
  Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
  ☆42Updated 7 years ago
• Rhodochrosite / MimikatzLite
  ☆26Updated this week
• antman1p / SharpProcEnum
  .NET tool for enumeration processes and dumping memory.
  ☆56Updated 5 years ago
• davehardy20 / PoSHBypass
  ☆24Updated 6 years ago
• Cn33liz / p0wnedLoader
  ☆71Updated this week
• SandboxEscaper / UAC
  ☆34Updated this week
• PivotAll / PivotAll
  Comprehensive Pivoting Framework
  ☆20Updated 8 years ago
• subTee / AppInitGlobalHooks-Mimikatz
  ☆29Updated this week
• Mr-Un1k0d3r / RC4-PowerShell-RAT
  ☆43Updated this week
• jacobsoo / DDE-Extractor
  This script is used for extracting DDE in docx and xlsx
  ☆12Updated 6 years ago
• dzonerzy / winescalation
  Python based module to find common vulnerabilities which lead to Windows privilege escalation
  ☆32Updated 7 years ago