wolfcod / lsassdump
lsassdump via RtlCreateProcessReflection and NanoDump
☆80Updated 5 months ago
Alternatives and similar repositories for lsassdump:
Users that are interested in lsassdump are comparing it to the libraries listed below
- ☆95Updated 6 months ago
- Modified versions of the Cobalt Strike Process Injection Kit☆93Updated last year
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆83Updated 2 years ago
- Threadless shellcode injection tool☆63Updated 7 months ago
- Tool to bypass LSA Protection (aka Protected Process Light)☆45Updated 2 months ago
- ☆98Updated last year
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints☆82Updated 2 months ago
- ☆52Updated 3 months ago
- I have documented all of the AMSI patches that I learned till now☆74Updated last year
- Execute dotnet app from unmanaged process☆71Updated 2 months ago
- Lateral Movement via the .NET Profiler☆80Updated 4 months ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆69Updated 10 months ago
- Encode shellcode into dictionary words for evasion and entropy reduction☆23Updated 4 months ago
- ☆68Updated last year
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆101Updated 2 years ago
- EmbedExeLnk by x86matthew modified by d4rkiZ☆35Updated last year
- converts sRDI compatible dlls to shellcode☆22Updated 2 months ago
- Section-based payload obfuscation technique for x64☆59Updated 7 months ago
- Bypassing Amsi using LdrLoadDll☆42Updated 2 months ago
- ☆81Updated 10 months ago
- ☆121Updated last year
- ☆125Updated 6 months ago
- Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…☆59Updated last year
- ☆125Updated last year