wh1tor / getsystem-for-cobaltstrike
Use powershell to getsystem with token dumplication
☆10Updated 4 years ago
Related projects: ⓘ
- Windows 7/2008 R2 EoP☆13Updated 3 years ago
- ShellCodeLoader via DInvoke☆48Updated 3 years ago
- ☆12Updated 3 years ago
- alternative to procdump☆9Updated 3 years ago
- ☆27Updated this week
- ☆12Updated 2 years ago
- Cs-Sleep-Mask-Fiber☆16Updated 3 months ago
- BlowBeef is a tool for analyzing WMI data.☆18Updated 3 years ago
- Use current thread token to execute command☆15Updated 3 years ago
- BOF/COFF obj file to PIC(shellcode). by golang☆35Updated last year
- Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray☆42Updated last year
- CVE-2019-1040 with Kerberos delegation☆32Updated 3 years ago
- dump lsass tool☆39Updated last year
- SharpDir is a simple code set to search both local and remote file systems for files and is compatible with Cobalt Strike.☆26Updated 5 years ago
- A simple hidden vnc.☆31Updated 3 years ago
- SolarWinds Orion Platform ActionPluginBaseView 反序列化RCE☆47Updated 2 years ago
- VEH hook☆10Updated 2 years ago
- C# 编写的用于 Dropbox 文件上传☆20Updated 2 years ago
- ☆37Updated this week
- Loads shellcode from a resource file.☆21Updated 5 years ago
- Using fibers to execute shellcode in a local process via csharp☆28Updated 2 years ago
- A wrapper of ldap_shell.py module which in ntlmrelayx☆59Updated last year
- creddump bypass AV☆39Updated 3 years ago
- Beacon Object Files.☆31Updated 6 months ago
- Stop Windows Defender programmatically☆15Updated 2 years ago
- (Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dll☆41Updated 2 years ago
- CobaltStrike Extentions☆39Updated 2 years ago
- Imitate CobaltStrike's Shellcode Generation☆3Updated 2 years ago
- change domain machine password locally or remotely☆9Updated 3 years ago
- Beacon Object File to delete token privileges and lower the integrity level to untrusted for a specified process☆32Updated 2 years ago