xforcered / WFH
☆189Updated 2 years ago
Alternatives and similar repositories for WFH:
Users that are interested in WFH are comparing it to the libraries listed below
- InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…☆190Updated 3 years ago
- Load any Beacon Object File using Powershell!☆250Updated 3 years ago
- Simple EDR implementation to demonstrate bypass☆172Updated 4 years ago
- Apply a filter to the events being reported by windows event logging☆261Updated 4 years ago
- ☆380Updated 3 years ago
- A tool to find folders excluded from AV real-time scanning using a time oracle☆233Updated last year
- Koppeling x Metatwin x LazySign☆210Updated 3 years ago
- ☆375Updated 2 years ago
- Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…☆240Updated 3 years ago
- 64bit Windows 10 shellcode that injects all processes with Meterpreter reverse shells.☆129Updated 2 years ago
- Collection of some of my own tools with other great open source tools out there packaged into a powershell module☆144Updated 2 years ago
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆257Updated 2 years ago
- LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript☆332Updated 3 years ago
- ☆208Updated 3 years ago
- Weaponising C# - Fundamentals Training Content☆70Updated 3 years ago
- Fully modular persistence framework☆254Updated 2 years ago
- ☆215Updated 2 years ago
- A fake AMSI Provider which can be used for persistence.☆150Updated 3 years ago
- Hookers are cooler than patches.☆170Updated 3 years ago
- Bring your own print driver privilege escalation tool☆250Updated 3 years ago
- ☆151Updated 2 months ago
- Tools for discovery and abuse of COM hijacks☆306Updated 5 years ago
- Physmem2profit can be used to create a minidump of a target hosts' LSASS process by analysing physical memory remotely☆415Updated 2 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆328Updated last year
- ☆300Updated last year
- ☆198Updated 2 months ago
- ShellWasp is a tool to help build shellcode that utilizes Windows syscalls, while overcoming the portability problem associated with Wind…☆167Updated last year
- PowerShell Constrained Language Mode Bypass☆261Updated 4 years ago
- Collection of beacon BOF written to learn windows and cobaltstrike☆347Updated 2 years ago
- Dll that can be used for side loading and other attack vector.☆202Updated 4 years ago