sidaf / moonshineLinks
☆69Updated last year
Alternatives and similar repositories for moonshine
Users that are interested in moonshine are comparing it to the libraries listed below
Sorting:
- AutoRMM is a collection of scripts and instructions we are organizing, to test delivery mechanisms for RMM and screen sharing tools, alo…☆87Updated 2 months ago
- Microsoft Graph API post-exploitation toolkit☆94Updated last year
- Simple EDR that injects a DLL into a process to place a hook on specific Windows API☆95Updated 2 years ago
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆57Updated 2 years ago
- Your Skyfall Infrastructure Pack☆76Updated last month
- ☆65Updated last year
- Extract registry and NTDS secrets from local or remote disk images☆43Updated 6 months ago
- Living Off the Foreign Land setup scripts☆70Updated 7 months ago
- ☆26Updated 6 months ago
- Detect userland hooks placed by AV/EDR☆28Updated 2 years ago
- Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later☆93Updated 2 years ago
- Info related to the Outflank training: Microsoft Office Offensive Tradecraft☆52Updated last year
- Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.☆23Updated 9 months ago
- ☆89Updated 3 years ago
- Example code samples from our ScriptBlock Smuggling Blog post☆91Updated last year
- ☆44Updated last year
- Abuse Azure API permissions for red teaming☆68Updated 2 years ago
- Linux CS bypass technique☆33Updated 8 months ago
- malleable profile generator GUI for Havoc☆55Updated 2 years ago
- Blog/Journal on how to backdoor VSCode extensions☆74Updated 2 months ago
- ☆35Updated 4 months ago
- ☆73Updated 3 months ago
- Docker container for running CobaltStrike 4.10☆37Updated last year
- POC tool to abuse windows server failover clusters☆44Updated last month
- ☆51Updated 11 months ago
- Source code and examples for PassiveAggression☆64Updated last year
- Tool to extract username and password of current user from PanGPA in plaintext☆88Updated 9 months ago
- Decrypt GlobalProtect configuration and cookie files.☆150Updated last year
- SMB Audit Tool you were looking for☆22Updated 2 years ago
- ☆60Updated last year