rtecCyberSec / SpeechRuntimeMoveLinks
Lateral Movement as loggedon User via Speech Named Pipe COM & ISpeechNamedPipe + COM Hijacking
☆97Updated last month
Alternatives and similar repositories for SpeechRuntimeMove
Users that are interested in SpeechRuntimeMove are comparing it to the libraries listed below
Sorting:
- This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…☆49Updated 3 months ago
- Local SYSTEM auth trigger for relaying - X☆133Updated last month
- ForsHops☆145Updated 4 months ago
- Remote DLL Injection with Timer-based Shellcode Execution☆94Updated last month
- ☆49Updated 4 months ago
- ☆130Updated 5 months ago
- A python script that automates a C2 Profile build☆43Updated 4 months ago
- .NET Post-Exploitation Utility for Abusing Explicit Certificate Mappings in ADCS☆149Updated 6 months ago
- Impersonate Tokens using only NTAPI functions☆79Updated 4 months ago
- Lateral movement with DCOM DLL hijacking☆137Updated last month
- A hoontr must hoont☆44Updated last week
- A BOF to enumerate system process, their protection levels, and more.☆119Updated 8 months ago
- Local SYSTEM auth trigger for relaying☆154Updated last month
- AzureAD beacon object files☆124Updated 8 months ago
- Evasive Payload Delivery Server & C2 Redirector☆71Updated 2 weeks ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆74Updated last year
- A small How-To on creating your own weaponized WSL file☆110Updated 3 weeks ago
- ☆53Updated 2 months ago
- ☆133Updated 6 months ago
- ☆57Updated 6 months ago
- A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.☆79Updated 5 months ago
- Windows Thread Pool Injection Havoc Implementation☆32Updated last year
- A tool to modify SCCM remote control settings on the client machine, enabling remote control without permission prompts or notifications.…☆95Updated 10 months ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆102Updated 3 months ago
- Two in one, patch lifetime powershell console, no more etw and amsi!☆96Updated 3 months ago
- Using Just In Time (JIT) instruction decryption, this shellcode loader ensures that only the currently executing instruction is visible i…☆38Updated 4 months ago
- Modern PIC implant for Windows (64 & 32 bit)☆102Updated 3 weeks ago
- A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.☆78Updated 7 months ago
- Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion☆91Updated last month
- Utilizng an MCP Server to communicate with your C2☆78Updated 3 months ago