xorrior / Random-CSharpTools
Collection of CSharp Assemblies focused on Post-Exploitation Capabilities
☆228Updated 5 years ago
Alternatives and similar repositories for Random-CSharpTools:
Users that are interested in Random-CSharpTools are comparing it to the libraries listed below
- ☆280Updated 4 years ago
- Lateral Movement technique using DCOM and HTA☆233Updated 2 years ago
- SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…☆291Updated 4 years ago
- DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.☆252Updated 6 years ago
- RedPeanut is a small RAT developed in .Net Core 2 and its agent in .Net 3.5 / 4.0.☆328Updated last year
- ☆348Updated 3 years ago
- Use CLR to inject all the .NET apps☆184Updated 4 years ago
- A Bring Your Own Land Toolkit that Doubles as a WMI Provider☆285Updated 6 years ago
- ** DISCONTINUED ** C2 framework that uses Background Intelligent Transfer Service (BITS) as communication protocol and Direct Syscalls + …☆215Updated 2 years ago
- A proof of concept for dynamically loading .net assemblies at runtime with only a minimal convention pre-knowledge☆162Updated 6 years ago
- The project is designed as a file resource cloner. Metadata, including digital signature, is extracted from one file and injected into a…☆345Updated 5 months ago
- Create a minidump of the LSASS process from memory☆260Updated 2 years ago
- dem sharp donuts☆196Updated 2 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆257Updated 6 years ago
- AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.☆387Updated 5 years ago
- ☆229Updated 6 years ago
- Evading WinDefender ATP credential-theft☆255Updated 5 years ago
- ☆216Updated 7 years ago
- GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects☆248Updated 4 years ago
- MSBuildShell, a Powershell Host running within MSBuild.exe☆287Updated 5 years ago
- CScriptShell, a Powershell Host running within cscript.exe☆160Updated 8 years ago
- ☆253Updated 6 years ago
- A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.☆95Updated 7 years ago
- BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET☆146Updated 5 years ago
- A tool to run .Net DLLs from the command line☆102Updated 6 years ago
- Code from this article: https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/☆175Updated 4 years ago
- The PowerThIEf, an Internet Explorer Post Exploitation library☆131Updated 2 months ago
- Collection of scripts, binaries and the like to aid in WhiteList Evasion on a Microsoft Windows Network.☆129Updated 9 years ago
- How To Execute Shellcode via HTA☆138Updated 7 years ago
- Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().☆216Updated 5 years ago