winsecurity / Offensive-C-SharpLinks
☆165Updated 2 years ago
Alternatives and similar repositories for Offensive-C-Sharp
Users that are interested in Offensive-C-Sharp are comparing it to the libraries listed below
Sorting:
- OPSEC safe Kerberoasting in C#☆192Updated 2 years ago
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆257Updated 2 years ago
- A new AMSI Bypass technique using .NET ALI Call Hooking.☆191Updated 2 years ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆177Updated 2 years ago
- Source generator to add D/Invoke and indirect syscall methods to a C# project.☆181Updated last year
- Patching AmsiOpenSession by forcing an error branching☆145Updated last year
- PoC to coerce authentication from Windows hosts using MS-WSP☆239Updated last year
- A collection of code snippets built to assist with breaking chains.☆117Updated last year
- Fully modular persistence framework☆256Updated 2 years ago
- Patch AMSI and ETW☆239Updated last year
- Attempt at Obfuscated version of SharpCollection☆216Updated last week
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆114Updated 2 years ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆256Updated 2 years ago
- ☆304Updated last year
- A collection of various and sundry code snippets that leverage .NET dynamic tradecraft☆142Updated last year
- Modular C# framework to exfiltrate loot over secure and trusted channels.☆127Updated 3 years ago
- ☆117Updated 2 months ago
- Identifies the bytes that Microsoft Defender flags on.☆86Updated 3 years ago
- A variety of AV evasion techniques written in C# for practice.☆90Updated 4 years ago
- Payload Generation Framework☆91Updated last year
- ☆199Updated last month
- ☆221Updated last year
- A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.☆298Updated 2 years ago
- Hookers are cooler than patches.☆169Updated 3 years ago
- Koppeling x Metatwin x LazySign☆210Updated 3 years ago
- PowerShell runner for executing malicious payloads in order to bypass Windows Defender.☆72Updated 3 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆337Updated last year
- ☆99Updated 3 years ago
- GregsBestFriend process injection code created from the White Knight Labs Offensive Development course☆190Updated last year
- Dynamically invoke arbitrary unmanaged code from managed code without P/Invoke.☆160Updated last year