securesean / DecryptAutoLogonLinks
Command line tool to extract/decrypt the password that was stored in the LSA by SysInternals AutoLogon
☆222Updated 4 years ago
Alternatives and similar repositories for DecryptAutoLogon
Users that are interested in DecryptAutoLogon are comparing it to the libraries listed below
Sorting:
- Miscellaneous Tools☆268Updated 4 years ago
- Exploit to SYSTEM for CVE-2021-21551☆237Updated 4 years ago
- Executes position independent shellcode from an encrypted zip☆304Updated 4 years ago
- C# port of WMImplant which uses either CIM or WMI to query remote systems☆201Updated 4 years ago
- A little tool to play with Outlook☆208Updated 3 years ago
- This is a PowerShell Empire launcher PoC using PrintDemon and Faxhell.☆202Updated 4 years ago
- New UAC bypass for Silent Cleanup for CobaltStrike☆192Updated 4 years ago
- Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…☆265Updated 4 years ago
- Pure C++, weaponized, fully automated implementation of RottenPotatoNG☆307Updated 3 years ago
- D(COM) V(ulnerability) S(canner) AKA Devious swiss army knife - Lateral movement using DCOM Objects☆208Updated 4 years ago
- This tool enables the compilation of a C# program that will execute arbitrary PowerShell code, without launching PowerShell processes thr…☆196Updated 4 years ago
- Run Rubeus via Rundll32☆202Updated 5 years ago
- Create a minidump of the LSASS process from memory☆260Updated 2 years ago
- official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)☆233Updated 3 years ago
- .NET implementation of Get-GPPPassword. Retrieves the plaintext password and other information for accounts pushed through Group Policy P…☆174Updated 5 years ago
- .NET 4.0 Project to interact with video, audio and keyboard hardware.☆217Updated 5 years ago
- Aggrokatz is an aggressor plugin extension for Cobalt Strike which enables pypykatz to interface with the beacons remotely and allows it …☆158Updated 4 years ago
- A collection of proof-of-concept source code and scripts for executing remote commands over WinRM using the WSMan.Automation COM object☆239Updated 5 years ago
- Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation☆211Updated 3 years ago
- ☆293Updated last year
- Dump stuff without touching disk☆164Updated 4 years ago
- Find specific users in active directory via their username and logon IP address☆385Updated 5 years ago
- Yet another PoC for https://www.wietzebeukema.nl/blog/hijacking-dlls-in-windows☆143Updated 5 years ago
- Python interpreter for Cobalt Strike Malleable C2 Profiles. Allows you to parse, build and modify them programmatically.☆279Updated 8 months ago
- ☆349Updated 3 years ago
- A Post exploitation tool written in C# uses either CIM or WMI to query remote systems.☆203Updated 3 years ago
- A C# implementation of RDPThief to steal credentials from RDP.☆163Updated 4 years ago
- A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.☆219Updated 2 years ago
- A tool to be used in post exploitation phase for blue and red teams to bypass APPLICATIONCONTROL policies☆324Updated 2 years ago
- Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.☆147Updated 4 years ago