wtechsec / LSASS-Forked-Dump---Bypass-EDR-CrowdStrikeView external linksLinks
☆58Apr 30, 2025Updated 9 months ago
Alternatives and similar repositories for LSASS-Forked-Dump---Bypass-EDR-CrowdStrike
Users that are interested in LSASS-Forked-Dump---Bypass-EDR-CrowdStrike are comparing it to the libraries listed below
Sorting:
- Adjusted version of the impacket-dcomexec script to work against Windows 10☆17Oct 13, 2025Updated 4 months ago
- Nim Shellcode Injector☆15Jan 24, 2021Updated 5 years ago
- Shellcode Loader using indirect syscalls☆16Jan 21, 2024Updated 2 years ago
- AppLocker-Based EDR Neutralization☆302Dec 19, 2025Updated last month
- A powerful Windows command-line tool for analyzing and searching ETW (Event Tracing for Windows) provider permissions from the Windows re…☆62Jul 29, 2025Updated 6 months ago
- Enumerate active EDR's on the system☆150Sep 23, 2025Updated 4 months ago
- BOF to run PE in Cobalt Strike Beacon without console creation☆186Nov 23, 2025Updated 2 months ago
- This C# tool sprays for admin access over the entire domain☆87Dec 7, 2025Updated 2 months ago
- Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege☆224Nov 23, 2023Updated 2 years ago
- Evasive loader to bypass static detection☆59Jan 15, 2024Updated 2 years ago
- ☆50May 4, 2025Updated 9 months ago
- ☆48Oct 14, 2025Updated 4 months ago
- this repo contains all nuclei templates for particular vulnerability that i used mosty while hunting..☆10Aug 15, 2024Updated last year
- ☆16Jan 12, 2026Updated last month
- A lightweight Python HTTP server with fuzzy filename matching and automatic fallback to directory listing.☆13Aug 28, 2025Updated 5 months ago
- A python script that automates a C2 Profile build☆48Dec 14, 2025Updated 2 months ago
- Cobalt Strike notifications via NTFY.☆15Sep 24, 2024Updated last year
- Bypasses AMSI protection through remote memory patching and parsing technique.☆54May 12, 2025Updated 9 months ago
- Compiled Binaries for Sharp Suite☆15Dec 28, 2019Updated 6 years ago
- Ghosting-AMSI☆222Apr 24, 2025Updated 9 months ago
- Assess the security of your Active Directory with few or all privileges.☆341Jan 31, 2026Updated 2 weeks ago
- lsassdump via RtlCreateProcessReflection and NanoDump☆84Oct 18, 2024Updated last year
- ☆53Sep 23, 2025Updated 4 months ago
- custom impacket mssqlclient☆26Sep 16, 2023Updated 2 years ago
- DEFCON 33 Workshop - Open Source Malware 101 - Everything you always wanted to know about npm malware (and more)☆15Aug 8, 2025Updated 6 months ago
- PEN-300 collection to help you on your exam.☆13Apr 19, 2022Updated 3 years ago
- Web File Manager☆12Aug 21, 2025Updated 5 months ago
- A set of tools and exploits to cause DoS for remote Windows Server & Windows 11 machines☆31Feb 9, 2026Updated last week
- An example of an external LLVM plugin module transform pass for the latest versions.☆14Oct 21, 2025Updated 3 months ago
- Early cascade injection PoC based on Outflanks blog post written in Rust☆67Dec 26, 2025Updated last month
- Run native PE or .NET executables entirely in-memory. Build the loader as an .exe or .dll—DllMain is Cobalt Strike UDRL-compatible☆266Jun 18, 2025Updated 7 months ago
- Extract SAM and SYSTEM using Volume Shadow Copy (VSS) API. With multiple exfiltration options and XOR obfuscation☆336Feb 2, 2026Updated 2 weeks ago
- This exploit is utilising AddressOfEntryPoint of process which is RX and using WriteProcessMemory internal magic to change the permission…☆18Oct 31, 2024Updated last year
- Google Dork Scanner for Google Chrome Extension☆17May 10, 2025Updated 9 months ago
- Python script that fetches, analyzes, and reports Microsoft Patch Tuesday updates via the MSRC API — with a clean web interface for easy …☆23Updated this week
- Admin Directory Finder is a tool designed to scan and identify directories under admin paths, such as admin/dashboard.php. It helps in se…☆33Aug 31, 2025Updated 5 months ago
- Beacon Object File for Cobalt Strike that executes .NET assemblies in beacon with evasion techniques.☆182Dec 23, 2025Updated last month
- Basic Linux binary shim method on the passwd binary from the shadow package to steal credentials as they are changed.☆13Nov 14, 2024Updated last year
- MalwareScan is a lightweight and fast malware scanner written in Python. It supports both Windows and Linux platforms and provides an ope…☆13Jun 2, 2025Updated 8 months ago