tbhaxor / CSharp-and-Infosec

Related projects: ⓘ

• aahmad097 / BadOutlook
  (kinda) Malicious Outlook Reader
  ☆132Updated 3 years ago
• NinjaStyle82 / rbcd_permissions
  Add SD for controlled computer object to a target object for RBCD using LDAP
  ☆38Updated 2 years ago
• MinatoTW / CLMBypassBlogpost
  This code was used for the blogpost on secjuice.
  ☆40Updated 5 years ago
• kyleavery / WMIEnum
  ☆32Updated this week
• Dramelac / GoldenCopy
  Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.
  ☆75Updated 4 months ago
• S3cur3Th1sSh1t / Get-System-Techniques
  ☆88Updated 2 years ago
• snovvcrash / OffensivePipeline
  OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.
  ☆90Updated 2 years ago
• wavestone-cdt / Invoke-CleverSpray
  Password Spraying Script detecting current and previous passwords of Active Directory User
  ☆63Updated 3 years ago
• S3cur3Th1sSh1t / Invoke-Sharpcradle
  Load C# Code straight to memory
  ☆54Updated 4 years ago
• rmdavy / HeapsOfFun
  AMSI Bypass Via the Heap
  ☆105Updated 3 years ago
• dtrizna / DotNetInject
  Code samples of .NET shellcode injections, weaponized for use via WebDav and mshta.exe.
  ☆39Updated 4 years ago
• mitchmoser / AtYourService
  Service Enumeration C# .NET Assembly
  ☆59Updated 3 years ago
• checkymander / Carbuncle
  Tool for interacting with outlook interop during red team engagements
  ☆143Updated 3 years ago
• fozavci / WeaponisingCSharp-Fundamentals
  Weaponising C# - Fundamentals Training Content
  ☆71Updated 3 years ago
• RedSiege / What-The-F
  This repo hosts a poc of how to execute F# code within an unmanaged process
  ☆64Updated 2 months ago
• Barbarisch / forkatz
  credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege
  ☆121Updated 3 years ago
• Adepts-Of-0xCC / MiniDumpWriteDumpPoC
  MiniDumpWriteDump behavior modification hook
  ☆49Updated 3 years ago
• SolomonSklash / RubeusToCcache
  A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket
  ☆50Updated 4 years ago
• netbiosX / AMSI-Provider
  A fake AMSI Provider which can be used for persistence.
  ☆134Updated 3 years ago
• WiredPulse / Invoke-HiveNightmare
  PoC for CVE-2021-36934, which enables a standard user to be able to retrieve the SAM, Security, and Software Registry hives in Windows 10…
  ☆34Updated last year
• rasta-mouse / RuralBishop
  D/Invoke port of UrbanBishop
  ☆104Updated 4 years ago
• Flangvik / SharpAppLocker
  C# port of the Get-AppLockerPolicy PS cmdlet
  ☆97Updated last year
• Ben0xA / DoUCMe
  ☆69Updated 3 years ago
• cube0x0 / HashSpray.py
  python spraying tools based on impacket lib
  ☆42Updated 2 years ago
• rvrsh3ll / MSBuildAPICaller
  MSBuild Without MSBuild.exe
  ☆155Updated 3 years ago
• boku7 / Nobelium-PdfDLRunAesShellcode
  A recreation of the "Nobelium" malware based on Microsofts Malware analysis - Part 1: PDF2Pwn
  ☆100Updated last year
• djhohnstein / ScatterBrain
  Suite of Shellcode Running Utilities
  ☆105Updated 4 years ago
• xFreed0m / ADFSpray
  Python3 tool to perform password spraying against Microsoft Online service using various methods
  ☆84Updated last year
• knavesec / o365fedenum
  Federated Office365 user enumeration based on correlated response trend analysis
  ☆47Updated 2 years ago
• thiagomayllart / Harvis
  Harvis is designed to automate your C2 Infrastructure.
  ☆104Updated 2 years ago