proxytype / RDP-THIEF
RDP THIEF - inject dll to remote desktop process (mstsc.exe) and steal user credentials.
☆13Updated 3 years ago
Alternatives and similar repositories for RDP-THIEF:
Users that are interested in RDP-THIEF are comparing it to the libraries listed below
- Windows File Enumeration Intel Gathering Tool.☆17Updated last year
- A compilation of Aggressor/Sleep scripts for operational purposes that I've made.☆11Updated 3 years ago
- Executes shellcode from a remote server and aims to evade in-memory scanners☆31Updated 5 years ago
- A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.☆18Updated 3 years ago
- JALSI - Just Another Lame Shellcode Injector☆30Updated 3 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆30Updated 2 years ago
- Collection of shellcode injection and execution techniques☆16Updated 3 years ago
- ☆15Updated last year
- golang String Obfuscate☆9Updated 2 years ago
- ollvm, based on llvm-clang 5.0.2, 6.0.1, 7.0.1, 8.0, 9.0, 9.0.1☆18Updated 2 years ago
- PoC for detecting and evading ETW detection of .Net Assembly.Load☆18Updated 4 years ago
- ☆12Updated 3 years ago
- A more advanced free and open .NET obfuscator using dnlib.☆10Updated 2 years ago
- ☆12Updated 2 years ago
- I used this to see if an EDR is running in Safe Mode☆34Updated 3 years ago
- A PE morphing tool that allows you to mimic one executable file to another.☆11Updated last year
- DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64)☆26Updated 4 years ago
- A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/☆30Updated 10 months ago
- Run PowerShell command without invoking powershell.exe☆35Updated 3 years ago
- ☆18Updated 3 years ago
- Just another casual shellcode native loader☆24Updated 2 years ago
- ☆15Updated 2 years ago
- A Docker container used to easily compile Nim binaries generated by my tools (NimPackt and NimPlant)☆14Updated last year
- ☆20Updated 3 years ago