t1Sh1n4 / mlwr_blogsLinks
collection of blogs about malware development and analysis
☆63Updated 2 months ago
Alternatives and similar repositories for mlwr_blogs
Users that are interested in mlwr_blogs are comparing it to the libraries listed below
Sorting:
- The different ways to dump lsass☆236Updated 5 months ago
- ☆152Updated 4 months ago
- Founding is a generator that will create a loader encrypted or obfuscated with different execution types☆111Updated 5 months ago
- This is practice VM for malware development☆179Updated 2 months ago
- An Ansible role that install the Adaptix C2 server and/or client on Debian based hosts☆177Updated 8 months ago
- RunPE implementation with multiple evasive techniques (2)☆268Updated 4 months ago
- Open-source offensive security platform for conducting phishing campaigns that weaponizes iCalendar automatic event processing.☆215Updated last month
- Group Policy Objects manipulation and exploitation framework☆288Updated last month
- SilentButDeadly is a network communication blocker specifically designed to neutralize EDR/AV software by preventing their cloud connecti…☆432Updated 3 months ago
- Swiss Army Knife for payload encryption, obfuscation, and conversion to byte arrays – all in a single command (14 output formats supporte…☆208Updated 4 months ago
- Advanced Domain Controller attack and credential analysis tool leveraging DonPAPI database☆260Updated 3 months ago
- Tool to enumerate privileged Scheduled Tasks on Remote Systems☆275Updated 3 weeks ago
- A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office3…☆166Updated 6 months ago
- ☆163Updated 7 months ago
- Repository containing all training and tutorials completed in preparation for the OSEE in conjunction with the AWE course.☆120Updated 2 months ago
- ☆164Updated 11 months ago
- PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads☆238Updated 3 months ago
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆165Updated 6 months ago
- ☆163Updated 2 months ago
- ☆156Updated 9 months ago
- ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets …☆147Updated last month
- Python3 utility for creating zip files that smuggle additional data for later extraction☆264Updated 8 months ago
- ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It pr…☆106Updated 10 months ago
- A curated list of awesome LOLBins, GTFO projects, and similar 'Living Off the Land' security resources.☆206Updated last year
- ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…☆121Updated last year
- AV/EDR processes termination by exploiting a vulnerable driver (BYOVD)☆176Updated 2 weeks ago
- Stealthy In-Memory Local Password Harvester (SILPH) tool: dump LSA, SAM and DCC2 with indirect syscall☆125Updated last month
- A community-driven collection of BloodHound queries☆159Updated this week
- PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…☆152Updated last year
- Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-nat…☆260Updated 9 months ago