san3ncrypt3d / AESShellCodeInjector
This program will take encrypted shell code and decrypt it in run time and inject it into another process
☆29Updated 2 years ago
Related projects: ⓘ
- ☆56Updated 3 years ago
- Automating payload generation for OSEP labs and exam.☆34Updated 2 years ago
- This is a CS project that will encrypt shell code from msfvenom using AES☆22Updated 2 years ago
- ☆87Updated 2 years ago
- Read the contents of MS Word Documents using Cobalt Strike's Execute-Assembly☆114Updated last year
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆53Updated 2 years ago
- Active Directory certificate abuse.☆36Updated 2 years ago
- ☆135Updated 2 years ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 2 years ago
- Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.☆105Updated 2 years ago
- .NET project for installing Persistence☆64Updated 2 years ago
- Golng version of SharpDump that can be used to extract LSASS or any other proces. Provides token elevation prior to creating dump of high…☆20Updated 3 years ago
- Pass the Hash to a named pipe for token Impersonation☆140Updated 3 years ago
- UI for creating LNKs☆97Updated 3 years ago
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆84Updated last year
- C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD…☆36Updated last year
- ☆57Updated 2 years ago
- ☆50Updated 2 years ago
- Bypass AMSI via PowerShell by splitting a file into multiple chunks☆49Updated 3 years ago
- .NET implementation of Cobalt Strike's External C2 Spec☆83Updated 2 years ago
- A spin-off research project. Cobalt Strike x Notion collab 2022☆53Updated 2 years ago
- ☆42Updated this week
- this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…☆81Updated 2 years ago
- ☆61Updated 2 years ago
- POC tools for exploring SMB over QUIC protocol☆119Updated 2 years ago
- Tool to start processes as SYSTEM using token duplication☆37Updated 3 years ago
- A faithful transposition of the key features/functionality of @itm4n's PPLDump project as a BOF.☆134Updated 2 years ago
- .Net Assembly loader for the [CVE-2021-42287 - CVE-2021-42278] Scanner & Exploit noPac☆59Updated last year
- IOXIDResolver from AirBus Security/PingCastle☆45Updated 3 years ago
- ☆53Updated 5 months ago