sec-consult / msiscan

Related projects ⓘ

Alternatives and complementary repositories for msiscan

• morRubin / NegoExRelay
  ☆83Updated 2 years ago
• SpecterOps / cred1py
  A Python POC for CRED1 over SOCKS5
  ☆134Updated last month
• csandker / pxethiefy
  ☆36Updated last month
• sevagas / Advanced_Initial_access_in_2024_OffensiveX
  Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
  ☆123Updated 3 months ago
• xpn / CloudInject
  ☆104Updated this week
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆80Updated 9 months ago
• leftp / DPAPISnoop
  A C# tool to output crackable DPAPI hashes from user MasterKeys
  ☆131Updated 2 months ago
• dadevel / impacket-zsh-integration
  ZSH integration for Impacket
  ☆59Updated 3 weeks ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆108Updated last month
• Dramelac / GoldenCopy
  Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.
  ☆80Updated 6 months ago
• 0xthirteen / AssemblyHunter
  Find .net assemblies locally
  ☆92Updated 2 years ago
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆160Updated 5 months ago
• powerseb / PowerExtract
  ☆112Updated last year
• bitsadmin / lofl
  Living Off the Foreign Land setup scripts
  ☆63Updated 3 weeks ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆166Updated last year
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆78Updated 7 months ago
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆145Updated 11 months ago
• CCob / PIVert
  ☆104Updated 3 months ago
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆45Updated last year
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆92Updated this week
• zyn3rgy / ClickonceHunter
  Golang search engine scraper intended for identification of published ClickOnce deployments
  ☆68Updated this week
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆53Updated 7 months ago
• ZephrFish / LOLSearches
  Living off the land searches for explorer and sharepoint
  ☆53Updated 3 weeks ago
• 0xe7 / RoastInTheMiddle
  ☆68Updated last year
• deepinstinct / AMSI-Unchained
  Unchain AMSI by patching the provider’s unmonitored memory space
  ☆88Updated 2 years ago
• g0h4n / RustHound-CE
  Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀
  ☆104Updated last month
• iamagarre / BadExclusionsNWBO
  BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR
  ☆72Updated 9 months ago
• thiagopeixoto / winsos-poc
  A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries.
  ☆108Updated 8 months ago
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆76Updated this week
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆83Updated 5 months ago