nmantani / PS-MOTW

Related projects: ⓘ

• Tylous / Ivy
  Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …
  ☆17Updated last year
• nullsection / Sneaky-DLL-Stager
  Reasonably undetected shellcode stager and executer.
  ☆34Updated last week
• simondotsh / DirSync
  DirSync is a simple proof of concept PowerShell module to demonstrate the impact of delegating DS-Replication-Get-Changes and DS-Replicat…
  ☆24Updated last year
• G0ldenGunSec / DayBird
  Extension functionality for the NightHawk operator client
  ☆26Updated 10 months ago
• Cipher7 / havoc-PoolParty
  Windows Thread Pool Injection Havoc Implementation
  ☆26Updated 5 months ago
• D4rthMaulCop / DumpKernel-S1
  A C# port of https://gist.github.com/adamsvoboda/8f29e09d74b73e1dec3f9049c4358e80
  ☆18Updated 9 months ago
• EvilBytecode / Lifetime-AmsiBypass
  Lifetime AMSI bypass.
  ☆35Updated 2 months ago
• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆23Updated 6 months ago
• ps1337 / Lastenzug
  Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level
  ☆25Updated 2 years ago
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆39Updated 2 months ago
• 0x1uke / lurker
  Lurker is a cross-platform, companion implant to Cobalt Strike built with Go
  ☆18Updated this week
• 4ndr34z / prenum
  ☆23Updated last year
• OffenseTeacher / Steganim
  ☆47Updated last year
• ItsCyberAli / EncryptedReaper
  ☆42Updated this week
• JonasBK / Powershell
  ☆25Updated last week
• caueb / ThreadlessStompingKann
  Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.
  ☆32Updated 8 months ago
• redskal / SharpAzbelt
  .NET port of Leron Gray's azbelt tool.
  ☆26Updated last year
• Leo4j / ShellGen
  PowerShell script to generate ShellCode in various formats
  ☆22Updated 2 weeks ago
• tijme / conferences
  Some of the presentations, workshops, and labs I gave at public conferences.
  ☆21Updated last week
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆54Updated 3 months ago
• OtterHacker / Cerbere
  ☆45Updated last year
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆46Updated 6 months ago
• Bl4ckM1rror / PEAs
  ☆57Updated 9 months ago
• joe-desimone / rep-research
  ☆62Updated last month
• RedSiege / Chromatophore
  Utilities for obfuscating shellcode
  ☆38Updated 2 months ago
• HackmichNet / SharpAzToken
  ☆41Updated 8 months ago
• Hubbl3 / ThreatCheck
  Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.
  ☆11Updated 4 months ago
• Leo4j / Invoke-ShareHunter
  Enumerate the Domain for Readable and Writable Shares
  ☆15Updated 3 months ago
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆60Updated last year
• rbmm / SDD
  Self Delete DLL
  ☆23Updated 7 months ago