xorrior / Random-CSharpTools
Collection of CSharp Assemblies focused on Post-Exploitation Capabilities
☆223Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for Random-CSharpTools
- ☆277Updated 3 years ago
- Lateral Movement technique using DCOM and HTA☆229Updated 2 years ago
- SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…☆290Updated 4 years ago
- The project is designed as a file resource cloner. Metadata, including digital signature, is extracted from one file and injected into a…☆328Updated 2 years ago
- dem sharp donuts☆187Updated 2 years ago
- Use CLR to inject all the .NET apps☆182Updated 3 years ago
- RedPeanut is a small RAT developed in .Net Core 2 and its agent in .Net 3.5 / 4.0.☆329Updated last year
- A Bring Your Own Land Toolkit that Doubles as a WMI Provider☆284Updated 6 years ago
- Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.☆155Updated 5 years ago
- DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.☆253Updated 6 years ago
- Code from this article: https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/☆170Updated 4 years ago
- A tool to run .Net DLLs from the command line☆100Updated 6 years ago
- The PowerThIEf, an Internet Explorer Post Exploitation library☆130Updated 6 years ago
- A proof of concept for dynamically loading .net assemblies at runtime with only a minimal convention pre-knowledge☆162Updated 6 years ago
- MSBuildShell, a Powershell Host running within MSBuild.exe☆282Updated 5 years ago
- ☆347Updated 2 years ago
- ** DISCONTINUED ** C2 framework that uses Background Intelligent Transfer Service (BITS) as communication protocol and Direct Syscalls + …☆214Updated last year
- ☆178Updated 2 years ago
- ☆229Updated 6 years ago
- A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.☆93Updated 6 years ago
- Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.☆199Updated 7 years ago
- BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET☆143Updated 4 years ago
- Create a minidump of the LSASS process from memory☆254Updated 2 years ago
- a tool to make it easy and fast to test various forms of injection☆172Updated 5 years ago
- ☆213Updated 6 years ago
- Evading WinDefender ATP credential-theft☆253Updated 4 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆254Updated 5 years ago
- GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects☆244Updated 4 years ago