o1mate / AppLocker-Bypass
Bypassing AppLocker with C#
☆138Updated 3 years ago
Alternatives and similar repositories for AppLocker-Bypass:
Users that are interested in AppLocker-Bypass are comparing it to the libraries listed below
- Koppeling x Metatwin x LazySign☆208Updated 3 years ago
- Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…☆240Updated 3 years ago
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆257Updated 2 years ago
- Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus☆226Updated 3 years ago
- InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…☆188Updated 3 years ago
- DLL Hijack Search Order Enumeration BOF☆147Updated 3 years ago
- Weaponising C# - Fundamentals Training Content☆70Updated 3 years ago
- Modular C# framework to exfiltrate loot over secure and trusted channels.☆121Updated 3 years ago
- Start new PowerShell without etw and amsi in pure nim☆157Updated 3 years ago
- Agressor script that lists available Cobalt Strike beacon commands and colors them based on their type☆201Updated last year
- A fake AMSI Provider which can be used for persistence.☆147Updated 3 years ago
- ☆69Updated 3 years ago
- C# version of MDSec's ParallelSyscalls☆140Updated 3 years ago
- Hookers are cooler than patches.☆169Updated 3 years ago
- Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF) via Syswhispers2☆182Updated 2 years ago
- ☆120Updated last year
- WNF Code Execution Library Using C#☆108Updated 4 years ago
- A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.☆296Updated 2 years ago
- Simple C# implementation of PowerUpSQL☆94Updated 8 months ago
- Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.☆119Updated 2 years ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆252Updated last year
- Simple rapper for Mimikatz, bypass Defender☆140Updated 3 years ago
- (kinda) Malicious Outlook Reader☆134Updated 4 years ago
- credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege☆123Updated 3 years ago
- Password attacks and MFA validation against various endpoints in Azure and Office 365☆152Updated 2 years ago
- official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)☆230Updated 2 years ago
- ☆111Updated last year
- pyCobaltHound is an Aggressor script extension for Cobalt Strike which aims to provide a deep integration between Cobalt Strike and Blood…☆137Updated last year
- A BOF to automate common persistence tasks for red teamers☆273Updated 2 years ago
- A recreation of the "Nobelium" malware based on Microsofts Malware analysis - Part 1: PDF2Pwn☆100Updated 2 years ago