strayge / pylnk

Related projects ⓘ

Alternatives and complementary repositories for pylnk

• Matmaus / LnkParse3
  Windows Shortcut file (LNK) parser
  ☆71Updated 5 months ago
• mgeeky / msidump
  MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.
  ☆193Updated last year
• nmantani / archiver-MOTW-support-comparison
  ☆169Updated 2 months ago
• usdAG / SharpLink
  Create file system symbolic links from low privileged user accounts within PowerShell
  ☆90Updated 2 years ago
• trustedsec / tscopy
  ☆91Updated 2 years ago
• daem0nc0re / SharpWnfSuite
  C# Utilities for Windows Notification Facility
  ☆124Updated 6 months ago
• m417z / winapiexec
  A small tool that allows to run WinAPI functions through command line parameters
  ☆176Updated 2 years ago
• sensepost / mydumbedr
  ☆101Updated 9 months ago
• last-byte / RIPPL
  RIPPL is a tool that abuses a usermode only exploit to manipulate PPL processes on Windows
  ☆6Updated 2 years ago
• nccgroup / Change-Lockscreen
  Offensive tool to trigger network authentications as SYSTEM
  ☆138Updated 2 years ago
• fox-it / dissect.esedb
  A Dissect module implementing a parser for Microsofts Extensible Storage Engine Database (ESEDB), used for example in Active Directory, E…
  ☆17Updated 4 months ago
• whydee86 / SnD_AMSI
  Start new PowerShell without etw and amsi in pure nim
  ☆158Updated 2 years ago
• volexity / donut-decryptor
  Retrieve inner payloads from Donut samples
  ☆81Updated 8 months ago
• S3cur3Th1sSh1t / Nim_DInvoke
  D/Invoke implementation in Nim
  ☆98Updated 2 years ago
• tuian / subTee-gits-backups
  subTee gists code backups
  ☆37Updated 6 years ago
• airbus-cert / vbSparkle
  VBScript & VBA source-to-source deobfuscator with partial-evaluation
  ☆73Updated 3 months ago
• nccgroup / PS2
  A port scanner written purely in PowerShell.
  ☆76Updated last year
• wietze / windows-command-line-obfuscation
  Project for identifying executables that have command-line options that can be obfuscated, possibly bypassing detection rules.
  ☆138Updated 3 years ago
• Qazeer / InfoSec-Notes
  InfoSec Notes
  ☆53Updated 7 months ago
• Mr-Un1k0d3r / WindowsDllsExport
  A list of all the DLLs export in C:\windows\system32\
  ☆211Updated 2 years ago
• Octoberfest7 / BeatRev
  POC for frustrating/defeating Malware Analysts
  ☆149Updated 2 years ago
• TheEnergyStory / malware_analysis_tools
  Tools helpful for malware analysis
  ☆22Updated 2 months ago
• GhostPack / Invoke-Evasion
  PowerShell Obfuscation and Data Science
  ☆172Updated 2 years ago
• Cobalt-Strike / ProxyDLLExample
  code for the Proxy DLL example blog post
  ☆58Updated 3 years ago
• EricZimmerman / LECmd
  Lnk Explorer Command line edition!!
  ☆275Updated 4 months ago
• JPCERTCC / Lazarus-research
  Lazarus analysis tools and research report
  ☆55Updated 10 months ago
• APTortellini / DefenderSwitch
  Stop Windows Defender using the Win32 API
  ☆190Updated 2 years ago
• ACE-Responder / ace-proctree
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆34Updated last year
• bohops / RogueAssemblyHunter
  Rogue Assembly Hunter is a utility for discovering 'interesting' .NET CLR modules in running processes.
  ☆115Updated 2 years ago