xpn / WAMBamLinks
Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post
☆124Updated 2 years ago
Alternatives and similar repositories for WAMBam
Users that are interested in WAMBam are comparing it to the libraries listed below
Sorting:
- ☆88Updated 2 years ago
- C# version of NTLMRawUnHide☆72Updated 2 years ago
- Investigation about ACL abusing for Active Directory Certificate Services (AD CS)☆122Updated 3 years ago
- ☆59Updated 3 years ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆93Updated last month
- Implant drop-in for EDR testing☆139Updated last year
- Section Mapping Process Injection (secinject): Cobalt Strike BOF☆96Updated 3 years ago
- BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR☆76Updated last year
- Click Once + App Domain☆62Updated last year
- Lockless BOF☆75Updated last month
- Script to use SysWhispers2 direct system calls from Cobalt Strike BOFs☆126Updated 3 years ago
- ☆70Updated 2 years ago
- ☆110Updated 7 months ago
- ☆142Updated 2 years ago
- Parse SDDL strings☆36Updated last year
- ☆88Updated 3 years ago
- ☆146Updated 2 years ago
- Lateral Movement via the .NET Profiler☆82Updated 7 months ago
- A BOF to interact with COM objects associated with the Windows software firewall.☆103Updated 3 years ago
- Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later☆91Updated 2 years ago
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆84Updated 2 years ago
- Collection of Beacon Object Files (BOFs) for shells and lols☆119Updated 3 years ago
- Slide decks and/or materials from conference presentations☆56Updated 2 years ago
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆52Updated last year
- Simple BOF to read the protection level of a process☆115Updated 2 years ago
- A basic meterpreter protocol stager using the libpeconv library by hasherezade for reflective loading☆84Updated 2 years ago
- AzureAD beacon object files☆120Updated 6 months ago
- A simple BOF that frees UDRLs☆120Updated 3 years ago
- ☆94Updated 3 years ago
- ☆75Updated 2 years ago