secur30nly / rust-herpaderping
Rust implementation of the Process Herpaderping
☆23Updated last year
Related projects: ⓘ
- Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts☆17Updated last year
- ☆29Updated last year
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆31Updated 4 months ago
- LSASS enumeration like pypykatz written in C-Lang☆20Updated 2 years ago
- ☆22Updated this week
- ☆24Updated 2 years ago
- A VSCode plugin to assist with BOF development.☆29Updated last month
- Beacon Object Files (not Buffer Overflows)☆51Updated last year
- A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host☆37Updated 9 months ago
- Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt☆18Updated last year
- Creation and removal of Defender path exclusions and exceptions in C#.☆29Updated 10 months ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 2 years ago
- ☆27Updated 3 months ago
- A method to execute shellcode using RegisterWaitForInputIdle API.☆50Updated last year
- Bunch of BOF files☆21Updated 7 months ago
- Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain☆32Updated 10 months ago
- WhoAmI by asking the LDAP service on a domain controller.☆58Updated 2 years ago
- Example of using Sleep to create better named pipes.☆41Updated last year
- ☆14Updated 6 months ago
- in-process powershell runner for BRC4☆35Updated 10 months ago
- A simple rpc2socks alternative in pure Go.☆23Updated 2 months ago
- DFSCoerce exe revisited version with custom authentication☆34Updated 8 months ago
- Copy metadata and digital signatures information from one Windows executable to another using Wine on a non-Windows platform☆15Updated 5 months ago
- A Dynamic MSBuild task to help with minor obfuscation of C# Binaries to evade static signatures on each compilation☆30Updated 5 months ago
- ☆23Updated 4 months ago
- ☆18Updated 2 years ago
- ☆45Updated last year
- Windows x64 Process Injection via Ghostwriting with Dynamic Configuration☆27Updated 2 years ago
- .NET port of Leron Gray's azbelt tool.☆26Updated 11 months ago
- ProcExp Driver (Ab)use☆20Updated last year
- Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions☆51Updated 2 years ago