wietze / Invoke-ArgFuscatorLinks
Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-native executables.
☆233Updated 4 months ago
Alternatives and similar repositories for Invoke-ArgFuscator
Users that are interested in Invoke-ArgFuscator are comparing it to the libraries listed below
Sorting:
- Find potential DLL Sideloads on your windows computer☆213Updated 7 months ago
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆241Updated 6 months ago
- ☆192Updated 3 months ago
- .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation☆393Updated last month
- lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection☆239Updated 2 months ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆283Updated 2 weeks ago
- Python implementation of GhostPack's Seatbelt situational awareness tool☆265Updated 9 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆264Updated last month
- PowerShell scripts for alternative SharpHound enumeration, including users, groups, computers, and certificates, using the ActiveDirector…☆376Updated 3 months ago
- Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …☆213Updated 10 months ago
- Offensive GPO dumping and analysis tool that leverages and enriches BloodHound data☆309Updated this week
- ☆153Updated 4 months ago
- A BloodHound collector for Microsoft Configuration Manager☆345Updated last month
- SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.☆332Updated 3 months ago
- ☆206Updated 2 months ago
- A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accounts☆163Updated last month
- Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC☆373Updated 7 months ago
- MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.☆301Updated last year
- psexecsvc - a python implementation of PSExec's native service implementation☆214Updated 6 months ago
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.☆239Updated 3 months ago
- Execute commands interactively on remote Windows machines using the WinRM protocol☆208Updated last week
- Continuous password spraying tool☆192Updated 5 months ago
- A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …☆206Updated last month
- ☆287Updated 2 years ago
- Evade EDR's the simple way, by not touching any of the API's they hook.☆151Updated 6 months ago
- An Ansible role that install the Adaptix C2 server and/or client on Debian based hosts☆163Updated 2 months ago
- ☆303Updated 5 months ago
- LudusHound is a tool for red and blue teams that transforms BloodHound data into a fully functional, Active Directory replica environment…☆273Updated last month
- ☆182Updated 2 months ago
- NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.☆163Updated last month