rtecCyberSec / SpeechRuntimeMoveLinks
Lateral Movement as loggedon User via Speech Named Pipe COM & ISpeechNamedPipe + COM Hijacking
☆131Updated 3 months ago
Alternatives and similar repositories for SpeechRuntimeMove
Users that are interested in SpeechRuntimeMove are comparing it to the libraries listed below
Sorting:
- ForsHops☆150Updated 6 months ago
- Internal Monologue BOF☆77Updated 9 months ago
- A hoontr must hoont☆99Updated 2 months ago
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS☆150Updated 8 months ago
- ☆135Updated last month
- adws enumeration bof☆144Updated 3 weeks ago
- Lateral Movement Bof with MSI ODBC Driver Install☆126Updated 3 weeks ago
- Local SYSTEM auth trigger for relaying - X☆146Updated 3 months ago
- Modern PIC implant for Windows (64 & 32 bit)☆103Updated 3 months ago
- This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…☆51Updated 5 months ago
- AzureAD beacon object files☆129Updated 10 months ago
- A python script that automates a C2 Profile build☆48Updated last month
- Impersonate Tokens using only NTAPI functions☆80Updated 6 months ago
- Local SYSTEM auth trigger for relaying☆165Updated 3 months ago
- A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.☆88Updated 9 months ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆104Updated 5 months ago
- Evasive Payload Delivery Server & C2 Redirector☆106Updated 2 months ago
- The ADSyncDump BOF is a port of Dirk-Jan Mollema's adconnectdump.py / ADSyncDecrypt into a Beacon Object File (BOF) with zero dependencie…☆158Updated last month
- Tool to enumerate privileged Scheduled Tasks on Remote Systems☆82Updated this week
- Lateral movement with DCOM DLL hijacking☆165Updated 3 months ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆74Updated last year
- A small How-To on creating your own weaponized WSL file☆118Updated 3 months ago
- Lateral Movement via the .NET Profiler☆84Updated 11 months ago
- tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it☆124Updated 2 months ago
- Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.☆167Updated 10 months ago
- A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.☆86Updated 7 months ago
- A tool to modify SCCM remote control settings on the client machine, enabling remote control without permission prompts or notifications.…☆103Updated last year
- A lightweight redirector for Google Cloud Run, enabling domain fronting via Google-owned infrastructure.☆108Updated last month
- ☆52Updated 4 months ago
- An impacket-lite cli tool that combines many useful impacket functions using a single session.☆54Updated 2 weeks ago