xct / diaghubLinks
Loads a custom dll in system32 via diaghub.
☆76Updated 5 years ago
Alternatives and similar repositories for diaghub
Users that are interested in diaghub are comparing it to the libraries listed below
Sorting:
- Simple APPLocker bypass summary☆42Updated 6 years ago
- POC for NetworkService PrivEsc☆126Updated 5 years ago
- Impersonating authentication over HTTP and/or named pipes.☆134Updated 4 years ago
- A Collection of templates that can be used for abusing window's AlwaysInstallElevated policy☆33Updated 2 years ago
- This code was used for the blogpost on secjuice.☆42Updated 6 years ago
- ☆29Updated 2 years ago
- ☆45Updated 8 years ago
- DLL Hijack Search Order Enumeration BOF☆147Updated 3 years ago
- C# PoC implementation for bypassing AMSI via in memory patching☆65Updated 4 years ago
- Implementation of b4rtiks's SharpMiniDump using NTFS transactions to avoid writting the minidump to disk and exfiltrating it via HTTPS us…☆71Updated 4 years ago
- credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege☆124Updated 4 years ago
- A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket☆59Updated 5 years ago
- Companion PoC for the "Adventures in Dynamic Evasion" blog post☆121Updated 4 years ago
- A sort of simple shell which support multiple protocols.☆99Updated 5 years ago
- Checks for signature requirements over LDAP☆97Updated 2 years ago
- ☆94Updated 3 years ago
- A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.☆168Updated 3 years ago
- ☆141Updated 3 years ago
- Tool for interacting with outlook interop during red team engagements☆144Updated 3 years ago
- MiniDumpWriteDump behavior modification hook☆50Updated 4 years ago
- Simple AV Evasion for PE Files☆41Updated 3 years ago
- AMSI Bypass Via the Heap☆107Updated 4 years ago
- Load .net assemblies from memory while having them appear to be loaded from an on-disk location.☆168Updated 4 years ago
- Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…☆104Updated 3 years ago
- 64bit Windows 10 shellcode that injects all processes with Meterpreter reverse shells.☆128Updated 2 years ago
- Weaponising C# - Fundamentals Training Content☆70Updated 4 years ago
- Tool to discover Resource-Based Constrained Delegation attack paths in Active Directory environments☆124Updated 3 years ago
- C# version of MDSec's ParallelSyscalls☆141Updated 3 years ago
- WNF Code Execution Library Using C#☆111Updated 5 years ago
- ☆55Updated 3 years ago