rasta-mouse / AMSITriggerLinks
The Hunt for Malicious Strings
☆13Updated 4 years ago
Alternatives and similar repositories for AMSITrigger
Users that are interested in AMSITrigger are comparing it to the libraries listed below
Sorting:
- Remote Desktop Protocol .NET Console Application for Authenticated Command Execution☆12Updated 5 years ago
- PoC code from blog☆16Updated 5 years ago
- Ransoblin (Ransomware Bokoblin)☆18Updated 4 years ago
- A Control Panel Applet dropper project. It has a high success rate on engagements since nobody cares about .CPL files and you can just do…☆53Updated 7 years ago
- Python 3 server used to control SK8RAT implant☆36Updated 4 years ago
- D/Invoke port of UrbanBishop☆29Updated 4 years ago
- Covenant is a collaborative .NET C2 framework for red teamers.☆13Updated 3 years ago
- Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)☆26Updated 5 years ago
- A simple injector that uses LoadLibraryA☆18Updated 5 years ago
- AppXSVC Service race condition - privilege escalation☆28Updated 6 years ago
- This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…☆21Updated 5 years ago
- Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials☆20Updated 4 years ago
- A C port of b33f's UrbanBishop☆38Updated 4 years ago
- ☆18Updated 4 years ago
- Demos of Donut used in conferences, etc. Mostly for my use, but free for others to use as a reference.☆32Updated 5 years ago
- C++ implant that interfaces with a SK8PARK server☆49Updated 4 years ago
- ☆28Updated 7 years ago
- Quick and dirty .net console app for querying mssql servers.☆20Updated 6 years ago
- Simple Aggressor Scripts for Cobalt Strike☆12Updated 4 years ago
- Code samples of .NET shellcode injections, weaponized for use via WebDav and mshta.exe.☆37Updated 5 years ago
- SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.☆29Updated 5 years ago
- Execute shellcode with ZwCreateSection, ZwMapViewOfSection, ZwOpenProcess, ZwMapViewOfSection and ZwCreateThreadEx☆15Updated 4 years ago
- ☆48Updated 4 years ago
- Extended Process List (Search functionality)☆29Updated 4 years ago
- An async Python client library for Empire's RESTful API☆25Updated last year
- Weaponizing CLRvoyance for Post-Ex .NET Execution☆36Updated 4 years ago
- Implementation of b4rtiks's SharpMiniDump using NTFS transactions to avoid writting the minidump to disk and exfiltrating it via HTTPS us…☆71Updated 4 years ago
- Simple .NET assembly to interact with services.☆41Updated 5 years ago
- Source code in Win32 ASM and C for a shellcode execution wrapper designed to mitigate the risk of shellcode execution on a host other tha…☆19Updated 9 years ago
- A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.☆33Updated 3 years ago