yehia-mamdouh / LsassxLinks
Dumping LSASS Evaded Endpoint Security Solutions
☆13Updated 4 months ago
Alternatives and similar repositories for Lsassx
Users that are interested in Lsassx are comparing it to the libraries listed below
Sorting:
- Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel☆29Updated 2 months ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆33Updated last year
- a C# implementation for a shellcode loader that capable to bypass Cortex XDR and Sophos EDR.☆50Updated last month
- ☆24Updated 8 months ago
- Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.☆37Updated 6 months ago
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆57Updated 3 weeks ago
- Extract registry and NTDS secrets from local or remote disk images☆43Updated 3 months ago
- A BOF tool that can be used to collect passwords using CredUIPromptForWindowsCredentialsName.☆15Updated 3 years ago
- ☆17Updated 2 weeks ago
- Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe☆13Updated last year
- ☆46Updated 2 months ago
- Enumerate the Domain for Readable and Writable Shares☆20Updated 4 months ago
- SAM Dumping in C#☆48Updated 5 months ago
- Python3 rewrite of AsOutsider features of AADInternals☆48Updated 6 months ago
- ☆55Updated 8 months ago
- GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…☆34Updated 7 months ago
- A python script that automates a C2 Profile build☆42Updated 2 months ago
- ☆56Updated 4 months ago
- A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader☆40Updated 8 months ago
- A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.☆50Updated 5 months ago
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆38Updated 11 months ago
- Scripts to interact with Microsoft Graph APIs☆42Updated 7 months ago
- Lsass dumper evading (some) EDR detection☆25Updated 4 months ago
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆56Updated last year
- Scripts I use to deploy Havoc on Linode and setup categorization and SSL☆40Updated last year
- Sniffing files generator☆58Updated 4 months ago
- .NET port of Leron Gray's azbelt tool.☆26Updated last year
- time-based user enum via Basic Auth in Azure against Autodiscover☆32Updated 8 months ago
- Brief writeup of post exploitation methodologies.☆18Updated last year
- This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…☆43Updated last month