LOCAL AND REMOTE HOOK msv1_0!SpAcceptCredentials from LSASS.exe and DUMP DOMAIN/LOGIN/PASSWORD IN CLEARTEXT to text file.
☆123Jan 27, 2020Updated 6 years ago
Alternatives and similar repositories for LogonCredentialsSteal
Users that are interested in LogonCredentialsSteal are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Windows PE - TLS (Thread Local Storage) Injector in C/C++☆109Jan 3, 2021Updated 5 years ago
- ☆182Feb 3, 2021Updated 5 years ago
- Library of BOFs to interact with SQL servers☆240Dec 3, 2025Updated 5 months ago
- A Simple PoC☆22May 24, 2024Updated 2 years ago
- UAC Bypass By Abusing Kerberos Tickets☆509Aug 10, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- malware written for educational purposes☆73Dec 31, 2025Updated 4 months ago
- A simple reverse ssh/proxy implant PoC for *nix systems.☆57Jul 5, 2024Updated last year
- Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…☆468Mar 8, 2023Updated 3 years ago
- Use to browse the share file by eas(Exchange Server ActiveSync)☆46Jun 28, 2020Updated 5 years ago
- ☆84Aug 26, 2024Updated last year
- A Large Action Model designed to operate on MacOS or Windows which interacts with common C2 interfaces such as Cobalt Strike, Havoc, or B…☆26Feb 29, 2024Updated 2 years ago
- Cobalt Strike UDRL for memory scanner evasion.☆52Dec 4, 2023Updated 2 years ago
- TCP Port Redirection Utility☆780Jan 31, 2023Updated 3 years ago
- An App Domain Manager Injection DLL PoC on steroids☆214Dec 14, 2023Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege☆123May 22, 2021Updated 5 years ago
- A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…☆275May 3, 2023Updated 3 years ago
- Inject .Net payloads into other .Net assemblies on disk☆61Dec 12, 2019Updated 6 years ago
- A .NET 4.8 application to retrieve delivr.to emails from Microsoft Outlook via COM☆20Jul 19, 2025Updated 10 months ago
- PoC module to demonstrate automated lateral movement with the Havoc C2 framework.☆312Dec 9, 2023Updated 2 years ago
- Tool to create hidden registry keys.☆489Oct 23, 2019Updated 6 years ago
- A beacon object file implementation of PoolParty Process Injection Technique.☆449Dec 21, 2023Updated 2 years ago
- Simple reverse ICMP shell☆14Apr 30, 2024Updated 2 years ago
- .NET assembly loader with patchless AMSI and ETW bypass☆381Apr 19, 2023Updated 3 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,638Jul 10, 2023Updated 2 years ago
- A Bind Shell Using the Fax Service and a DLL Hijack☆333May 3, 2020Updated 6 years ago
- Create a minidump of the LSASS process from memory☆259Nov 2, 2022Updated 3 years ago
- Shellcode reflective DLL injection in Rust☆30May 3, 2026Updated 3 weeks ago
- A Go implementation of Cobalt Strike style BOF/COFF loaders.☆269Feb 22, 2025Updated last year
- MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.☆535Nov 14, 2025Updated 6 months ago
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.☆629Jan 2, 2025Updated last year
- UAC bypass and Elevate☆14Sep 24, 2016Updated 9 years ago
- Service Enumeration C# .NET Assembly☆58Sep 14, 2021Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- .NET Project for performing Authenticated Remote Execution☆406Feb 8, 2023Updated 3 years ago
- LoadLibrary for offensive operations☆33Dec 14, 2021Updated 4 years ago
- ☆40Jul 29, 2021Updated 4 years ago
- quick 'n dirty poc based on PoC windows auth prompt in c# based on https://gist.githubusercontent.com/mayuki/339952/raw/2c36b735bc51861a3…☆31Jun 12, 2020Updated 5 years ago
- C# application that allows you to quick run SSH commands against a host or list of hosts☆42Sep 21, 2020Updated 5 years ago
- ☆18Aug 8, 2024Updated last year
- A C# Solution Source Obfuscator for avoiding AV signatures with minimal user interaction. Powered by the Roslyn C# library.☆104Mar 25, 2025Updated last year