trustedsec / inProc_Evade_Get-InjectedThread
PoC code from blog
☆16Updated 5 years ago
Alternatives and similar repositories for inProc_Evade_Get-InjectedThread:
Users that are interested in inProc_Evade_Get-InjectedThread are comparing it to the libraries listed below
- Source code in Win32 ASM and C for a shellcode execution wrapper designed to mitigate the risk of shellcode execution on a host other tha…☆19Updated 8 years ago
- ☆28Updated 7 years ago
- C# code to run PIC using CreateThread☆17Updated 5 years ago
- Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials☆20Updated 4 years ago
- ☆14Updated 4 years ago
- Ransoblin (Ransomware Bokoblin)☆17Updated 4 years ago
- RID Hijacking Proof of Concept script by Kevin Joyce☆15Updated 6 years ago
- Simple Aggressor Scripts for Cobalt Strike☆11Updated 4 years ago
- ☆14Updated 5 years ago
- Protect your servers with a secret header☆29Updated 4 years ago
- .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems☆33Updated 5 years ago
- A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.☆18Updated 3 years ago
- Miscellaneous examples for use with Cobalt Strike Beacon☆10Updated 4 years ago
- Apply a filter to the events being reported by windows event logging☆15Updated 4 years ago
- A C port of b33f's UrbanBishop☆38Updated 4 years ago
- Convert Empire profiles to Apache mod_rewrite scripts☆27Updated 5 years ago
- Walking the PEB in VBA☆22Updated 4 years ago
- This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…☆20Updated 5 years ago
- Extracts Azure authentication tokens from PowerShell process minidumps.☆23Updated last year
- A C# tool to send emails through Outlook from the command line or in memory☆30Updated 4 years ago
- Random code snippets☆9Updated last year
- Extended Process List (Search functionality)☆29Updated 4 years ago
- Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.☆14Updated 7 years ago
- ☆13Updated 3 years ago
- ☆14Updated 5 years ago
- D/Invoke port of UrbanBishop☆29Updated 4 years ago
- ☆24Updated 4 years ago
- Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)☆26Updated 4 years ago
- SSDP Service Discovery☆16Updated 6 years ago