outflanknl / DumpertLinks
LSASS memory dumper using direct system calls and API unhooking.
☆1,563Updated 4 years ago
Alternatives and similar repositories for Dumpert
Users that are interested in Dumpert are comparing it to the libraries listed below
Sorting:
- Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…☆1,167Updated 2 years ago
- A method of bypassing EDR's active projection DLL's by preventing entry point exection☆1,159Updated 4 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,566Updated 2 years ago
- Open-Source Shellcode & PE Packer☆2,033Updated last year
- AV/EDR evasion via direct system calls.☆1,953Updated 2 years ago
- ☆2,162Updated 2 years ago
- A tool to kill antimalware protected processes☆1,484Updated 4 years ago
- This program is designed to demonstrate various process injection techniques☆1,204Updated 3 months ago
- A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …☆1,034Updated 4 years ago
- Dump the memory of a PPL with a userland exploit☆881Updated 3 years ago
- AV/EDR evasion via direct system calls.☆1,763Updated 3 years ago
- Tool to bypass LSA Protection (aka Protected Process Light)☆974Updated 2 years ago
- Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing…☆1,677Updated 2 months ago
- Also known by Microsoft as Knifecoat☆1,147Updated 2 years ago
- ☆1,523Updated 2 years ago
- The swiss army knife of LSASS dumping☆2,031Updated last year
- Template-Driven AV/EDR Evasion Framework☆1,750Updated 2 years ago
- Windows Privilege Escalation from User to Domain Admin.☆1,428Updated 2 years ago
- Situational Awareness commands implemented using Beacon Object Files☆1,632Updated last week
- The Hunt for Malicious Strings☆1,323Updated 6 months ago
- SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature…☆1,228Updated 2 years ago
- SafetyKatz is a combination of slightly modified version of @gentilkiwi's Mimikatz project and @subtee's .NET PE Loader☆1,298Updated 6 years ago
- ☆1,749Updated last year
- Extracting Clear Text Passwords from mstsc.exe using API Hooking.☆1,393Updated last year
- Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.☆749Updated 4 years ago
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆1,377Updated 2 years ago
- Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime pat…☆876Updated 4 years ago
- Adaptive DLL hijacking / dynamic export forwarding☆797Updated 5 years ago
- A VBA implementation of the RunPE technique or how to bypass application whitelisting.☆816Updated 5 years ago
- Evade sysmon and windows event logging☆626Updated 5 years ago