raskolnikov90 / LainAmsiOpenSessionLinks
Custom Amsi Bypass by patching AmsiOpenSession function in amsi.dll
☆43Updated 4 months ago
Alternatives and similar repositories for LainAmsiOpenSession
Users that are interested in LainAmsiOpenSession are comparing it to the libraries listed below
Sorting:
- Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.☆40Updated 10 months ago
- ☆57Updated 8 months ago
- Tamper Active Directory user attributes to collect their hashes with MS-SNTP☆41Updated 9 months ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆33Updated last year
- Scripts I use to deploy Havoc on Linode and setup categorization and SSL☆42Updated last year
- Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel☆47Updated 6 months ago
- ☆41Updated 8 months ago
- Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3☆22Updated last year
- Python3 rewrite of AsOutsider features of AADInternals☆55Updated 3 months ago
- ☆92Updated 9 months ago
- Your Skyfall Infrastructure Pack☆77Updated last week
- Extract registry and NTDS secrets from local or remote disk images☆43Updated 7 months ago
- A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.☆88Updated 9 months ago
- Exploits a flaw in Remote Desktop Plus by monitoring and decrypting temporary .rdp files in %localappdata%/Temp, revealing credentials us…☆16Updated 3 months ago
- A small red team course☆39Updated 2 years ago
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆60Updated 3 months ago
- ☆49Updated 6 months ago
- ☆59Updated 11 months ago
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆37Updated 6 months ago
- in-process powershell runner for BRC4☆47Updated last year
- ☆26Updated 7 months ago
- Situational Awareness script to identify how and where to run implants☆67Updated 10 months ago
- ☆51Updated 11 months ago
- ☆148Updated 5 months ago
- POCs for CVE-2025-50154 and CVE-2025-59214, zero day vulnerabilities on windows file explorer disclosing NTLMv2-SSP without user interact…☆35Updated last week
- Tool to obtain hash using MS-SNTP for user accounts☆27Updated 9 months ago
- Deploy a phishing infrastructure on the fly.☆76Updated 10 months ago
- (MeetC2 a.k.a Meeting C2) - A framework abusing Google Calendar APIs.☆116Updated last month
- A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.☆86Updated 7 months ago
- Permanently disable EDRs as local admin☆118Updated 2 weeks ago