A PowerShell script that checks for dangerous ACLs on system hives and shadows
☆26Jul 21, 2021Updated 4 years ago
Alternatives and similar repositories for HiveNightmare-Checker
Users that are interested in HiveNightmare-Checker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tradecraft Development Fundamentals☆40Aug 6, 2021Updated 4 years ago
- Nagios HTTP/HTTPS check via wget (with/without Proxy)☆10Nov 5, 2017Updated 8 years ago
- This repository contains advanced threat hunting scripts for Cisco Secure Endpoint API. The scripts leverage the AMP API to hunt for thre…☆14Apr 21, 2026Updated last month
- Collection of BOFs for Cobalt Strike☆32Mar 28, 2023Updated 3 years ago
- Run PowerShell command without invoking powershell.exe☆36Nov 22, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A cover story generator for people who Need Quick Covers On Operations☆13May 17, 2020Updated 6 years ago
- A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…☆51Aug 30, 2025Updated 9 months ago
- Powershell script to emulate the "blast radius" of a ransomware infection.☆28Jul 27, 2021Updated 4 years ago
- Dump Teams conversations☆18Jun 9, 2021Updated 5 years ago
- A proof-of-concept tool that attempts to retrieve the configuration from the memory dump of an F-Secure C3 Relay executable.☆16Jul 2, 2021Updated 4 years ago
- LetMeOutOfYour.net Resources☆21Apr 11, 2026Updated 2 months ago
- ☆60Aug 30, 2021Updated 4 years ago
- Firebase Domain Front Code☆21May 4, 2021Updated 5 years ago
- Post-exploitation tool for attacking Active Directory domain controllers☆18Dec 18, 2022Updated 3 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- ☆53Sep 16, 2021Updated 4 years ago
- Core bypass Windows Defender and execute any binary converted to shellcode☆44Oct 12, 2021Updated 4 years ago
- Example code for using named pipe output with beacon ReflectiveDLLs☆122Jun 24, 2020Updated 5 years ago
- ☆20Apr 15, 2025Updated last year
- Open source offering for the Logscape log management tool.☆28Aug 2, 2021Updated 4 years ago
- Assembly HellGate implementation that directly calls Windows System Calls and displays the PPID of the explorer.exe process☆106Mar 8, 2023Updated 3 years ago
- JALSI - Just Another Lame Shellcode Injector☆30Aug 1, 2021Updated 4 years ago
- Zoom Persistence Aggressor and Handler☆57Mar 24, 2021Updated 5 years ago
- ☆53Nov 11, 2021Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Exploit for HiveNightmare - CVE-2021–36934☆60Aug 22, 2025Updated 9 months ago
- User enumeration with Microsoft Teams API☆174Jul 9, 2021Updated 4 years ago
- Proof of concept - Covert Channel using Windows Filtering Platform (C#)☆21Aug 29, 2021Updated 4 years ago
- Using outlook COM objects to create convincing phishing emails without the user noticing. This project is meant for internal phishing.☆156Dec 22, 2020Updated 5 years ago
- Remove API hooks from a Beacon process.☆77Mar 13, 2022Updated 4 years ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Mar 7, 2023Updated 3 years ago
- Track progress and keep notes while working through likethecoins' CTI Self Study Plan☆29Aug 25, 2022Updated 3 years ago
- Microsoft Flow Attack Framework☆23Nov 14, 2019Updated 6 years ago
- ☆56May 13, 2020Updated 6 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Red Team tool for exfiltrating files from a target's Google Drive that you have access to, via Google's API.☆60Sep 2, 2021Updated 4 years ago
- Read Excel Spreadsheets (XLS/XLSX) using Cobalt Strike's Execute-Assembly☆89Sep 30, 2024Updated last year
- 64bit Windows 10 shellcode that injects all processes with Meterpreter reverse shells.☆132Mar 8, 2023Updated 3 years ago
- ☆18Dec 12, 2020Updated 5 years ago
- Merge of two major cyber adversary datasets, MITRE ATT&CK and ETDA/ThaiCERT Threat Actor Cards, enabling victim/motivation-adversary-tech…☆55Jul 31, 2022Updated 3 years ago
- A list of windows potatoes!☆27Mar 6, 2022Updated 4 years ago
- C# utility that uses WMI to run "cmd.exe /c netstat -n", save the output to a file, then use SMB to read and delete the file remotely☆39Jan 3, 2020Updated 6 years ago