securesean / DecryptAutoLogon
Command line tool to extract/decrypt the password that was stored in the LSA by SysInternals AutoLogon
☆216Updated 4 years ago
Alternatives and similar repositories for DecryptAutoLogon:
Users that are interested in DecryptAutoLogon are comparing it to the libraries listed below
- Executes position independent shellcode from an encrypted zip☆302Updated 4 years ago
- Exploit to SYSTEM for CVE-2021-21551☆237Updated 3 years ago
- Create a minidump of the LSASS process from memory☆259Updated 2 years ago
- ☆354Updated 3 years ago
- Miscellaneous Tools☆265Updated 4 years ago
- C# Lsass parser☆289Updated 3 years ago
- official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)☆230Updated 2 years ago
- Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…☆262Updated 4 years ago
- .NET Project for performing Authenticated Remote Execution☆391Updated 2 years ago
- .NET Project for Attacking vCenter☆540Updated 3 years ago
- New UAC bypass for Silent Cleanup for CobaltStrike☆191Updated 3 years ago
- ☆291Updated 8 months ago
- Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon☆325Updated 2 years ago
- C# POC for CVE-2021-26855 aka ProxyLogon, supports the classically semi-interactive web shell as well as shellcode injection☆242Updated 3 years ago
- Dump stuff without touching disk☆162Updated 4 years ago
- This is a PowerShell Empire launcher PoC using PrintDemon and Faxhell.☆200Updated 4 years ago
- Cobalt Strike kit for Persistence☆473Updated 5 years ago
- Aggrokatz is an aggressor plugin extension for Cobalt Strike which enables pypykatz to interface with the beacons remotely and allows it …☆157Updated 3 years ago
- The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.☆476Updated 2 years ago
- This tool enables the compilation of a C# program that will execute arbitrary PowerShell code, without launching PowerShell processes thr…☆194Updated 4 years ago
- Pure C++, weaponized, fully automated implementation of RottenPotatoNG☆300Updated 3 years ago
- ☆351Updated 3 years ago
- A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.☆215Updated last year
- A C# implementation of RDPThief to steal credentials from RDP.☆160Updated 4 years ago
- Pass the Hash to a named pipe for token Impersonation☆301Updated last year
- Run Rubeus via Rundll32☆199Updated 4 years ago
- C# port of WMImplant which uses either CIM or WMI to query remote systems☆198Updated 3 years ago
- .NET implementation of Get-GPPPassword. Retrieves the plaintext password and other information for accounts pushed through Group Policy P…☆171Updated 5 years ago
- Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.☆146Updated 4 years ago
- Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.☆379Updated 2 years ago