yua-mikanana / aes_dinvokeLinks
a repository that contains the program.cs source file that has D/Invoke bare minimum implementation and AES encryption for shellcode execution
☆23Updated 2 years ago
Alternatives and similar repositories for aes_dinvoke
Users that are interested in aes_dinvoke are comparing it to the libraries listed below
Sorting:
- A C# tool to output crackable DPAPI hashes from user MasterKeys☆136Updated last year
- A basic meterpreter protocol stager using the libpeconv library by hasherezade for reflective loading☆84Updated 2 years ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆56Updated 3 years ago
- C# havoc implant☆101Updated 2 years ago
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆101Updated 2 years ago
- Alternative Shellcode Execution Via Callbacks in C# with P/Invoke☆81Updated 2 years ago
- ☆90Updated 4 years ago
- A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket☆65Updated 5 years ago
- Simple APPLocker bypass summary☆43Updated 6 years ago
- Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post☆128Updated 2 years ago
- A collection of various and sundry code snippets that leverage .NET dynamic tradecraft☆145Updated last year
- C# version of NTLMRawUnHide☆72Updated 2 years ago
- Bypass AMSI via PowerShell by splitting a file into multiple chunks☆53Updated 4 years ago
- ☆141Updated 3 years ago
- A fake AMSI Provider which can be used for persistence.☆152Updated 4 years ago
- ☆88Updated 3 years ago
- Cobalt Strike BOF that uses a custom ASM HalosGate & HellsGate syscaller to return a list of processes☆108Updated 2 years ago
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆53Updated last year
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆116Updated last year
- Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.☆121Updated 3 years ago
- Investigation about ACL abusing for Active Directory Certificate Services (AD CS)☆128Updated 3 years ago
- RDLL for Cobalt Strike beacon to silence sysmon process☆89Updated 3 years ago
- Automating payload generation for OSEP labs and exam.☆34Updated 3 years ago
- UI for creating LNKs☆105Updated 4 years ago
- Slide decks and/or materials from conference presentations☆56Updated 2 years ago
- Simple .NET loader for loading and executing Powershell payloads☆17Updated 3 years ago
- A Collection of templates that can be used for abusing window's AlwaysInstallElevated policy☆38Updated 2 years ago
- ☆73Updated 3 months ago
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆85Updated last year
- This program will take encrypted shell code and decrypt it in run time and inject it into another process☆29Updated 3 years ago