slyd0g / DLLHijackTest
DLL and PowerShell script to assist with finding DLL hijacks
☆328Updated 3 years ago
Related projects: ⓘ
- A .NET Runtime for Cobalt Strike's Beacon Object Files☆652Updated 2 weeks ago
- The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.☆461Updated 2 years ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆681Updated 9 months ago
- Various Cobalt Strike BOFs☆557Updated last year
- Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)☆405Updated 3 years ago
- ☆345Updated 3 years ago
- Command line interface to dump LSASS memory to disk via SilentProcessExit☆435Updated 3 years ago
- Custom Metasploit post module to executing a .NET Assembly from Meterpreter session☆342Updated 4 years ago
- Collection of Beacon Object Files☆538Updated last year
- A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …☆852Updated 3 years ago
- PIC lsass dumper using cloned handles☆570Updated last year
- Cobalt Strike kit for Lateral Movement☆640Updated 4 years ago
- C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.☆367Updated 2 weeks ago
- Convert Cobalt Strike profiles to modrewrite scripts☆578Updated last year
- A meterpreter extension for applying hooks to avoid windows defender memory scans☆237Updated 4 years ago
- A .NET Framework 4.0 Windows Agent☆443Updated 2 weeks ago
- One Token To Rule Them All https://labs.mwrinfosecurity.com/blog/incognito-v2-0-released/☆142Updated 4 years ago
- Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…☆427Updated last year
- Excel Macro Document Reader/Writer for Red Teamers & Analysts☆513Updated 2 years ago
- A User Impersonation tool - via Token or Shellcode injection☆397Updated 2 years ago
- ☆347Updated 2 years ago
- ☆531Updated this week
- Project for identifying executables and DLLs vulnerable to relative path DLL hijacking.☆435Updated 4 months ago
- .NET Project for performing Authenticated Remote Execution☆369Updated last year
- Ps-Tools, an advanced process monitoring toolkit for offensive operations☆323Updated 3 years ago
- Bypass for PowerShell Constrained Language Mode☆359Updated 2 years ago
- Cobalt Strike kit for Persistence☆462Updated 4 years ago
- TCP Port Redirection Utility☆662Updated last year
- ☆461Updated last year
- ☆497Updated 2 years ago