securesean / DecryptAutoLogon
Command line tool to extract/decrypt the password that was stored in the LSA by SysInternals AutoLogon
☆212Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for DecryptAutoLogon
- Executes position independent shellcode from an encrypted zip☆300Updated 3 years ago
- Exploit to SYSTEM for CVE-2021-21551☆237Updated 3 years ago
- official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)☆231Updated 2 years ago
- .NET Project for performing Authenticated Remote Execution☆378Updated last year
- ☆289Updated 4 months ago
- ☆347Updated 3 years ago
- Miscellaneous Tools☆261Updated 4 years ago
- ☆131Updated 3 years ago
- A little tool to play with Outlook☆204Updated 2 years ago
- Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon☆322Updated 2 years ago
- C# port of WMImplant which uses either CIM or WMI to query remote systems☆195Updated 3 years ago
- A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.☆296Updated last year
- Cobalt Strike kit for Persistence☆464Updated 4 years ago
- Pass the Hash to a named pipe for token Impersonation☆295Updated 11 months ago
- This is a PowerShell Empire launcher PoC using PrintDemon and Faxhell.☆198Updated 4 years ago
- Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…☆428Updated last year
- D(COM) V(ulnerability) S(canner) AKA Devious swiss army knife - Lateral movement using DCOM Objects☆197Updated 4 years ago
- The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.☆465Updated 2 years ago
- Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.☆377Updated last year
- Pure C++, weaponized, fully automated implementation of RottenPotatoNG☆298Updated 3 years ago
- This tool enables the compilation of a C# program that will execute arbitrary PowerShell code, without launching PowerShell processes thr…☆192Updated 4 years ago
- Dump stuff without touching disk☆159Updated 4 years ago
- C# POC for CVE-2021-26855 aka ProxyLogon, supports the classically semi-interactive web shell as well as shellcode injection☆239Updated 3 years ago
- Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…☆260Updated 3 years ago
- Run Rubeus via Rundll32☆198Updated 4 years ago
- LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript☆327Updated 3 years ago
- A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.☆213Updated last year