zblurx / impersonate-rsLinks
Rusty Impersonate
☆101Updated 2 years ago
Alternatives and similar repositories for impersonate-rs
Users that are interested in impersonate-rs are comparing it to the libraries listed below
Sorting:
- WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"☆119Updated last year
- Simple BOF to read the protection level of a process☆118Updated 2 years ago
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆148Updated last year
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆101Updated 2 years ago
- Your syscall factory☆124Updated 2 months ago
- ☆133Updated 6 months ago
- Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies☆120Updated last year
- A BOF to enumerate system process, their protection levels, and more.☆119Updated 9 months ago
- Sliver extension performing TCP redirection tasks without performing cross-process injection.☆66Updated 7 months ago
- Lateral Movement via the .NET Profiler☆82Updated 9 months ago
- ☆112Updated 9 months ago
- ☆110Updated 6 months ago
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆116Updated last year
- Detect EDR's exceptions by inspecting processes' loaded modules☆130Updated last year
- A web assembly (WASM) phishing lure generator based on pre-built templates and written in Rust with some GenAI assistance. W.A.L.K. aims …☆89Updated 11 months ago
- Find DLLs with RWX section☆81Updated 2 years ago
- ☆124Updated last year
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆116Updated last year
- Find .net assemblies locally☆122Updated 2 years ago
- ☆137Updated 2 years ago
- ☆84Updated last year
- Weaponizing DCOM for NTLM Authentication Coercions☆160Updated last month
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆102Updated 3 months ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section☆106Updated 2 years ago
- ☆89Updated 3 years ago
- Local & remote Windows DLL Proxying☆165Updated last year
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆75Updated 2 years ago
- Run Cobalt Strike BOFs in Brute Ratel C4!☆71Updated 4 months ago
- DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.☆98Updated last year
- Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"☆145Updated last year