-
Microsoft Corporation
Block or Report
Block or report JohnLaTwC
Contact GitHub support about this user’s behavior. Learn more about reporting abuse.
Report abuse-
-
DocPlz Public
Forked from SaadAhla/DocPlzDocuments Exfiltration project for fun and educational purposes
C++ UpdatedOct 3, 2023 -
-
SharpSCCM Public
Forked from Mayyhem/SharpSCCMA C# utility for interacting with SCCM
C# GNU General Public License v3.0 UpdatedFeb 20, 2023 -
speakeasy Public
Forked from mandiant/speakeasyWindows kernel and user mode emulation.
-
DrvMon Public
Forked from Fyyre/DrvMonAdvanced driver monitoring utility.
C MIT License UpdatedJul 13, 2022 -
SharpUp Public
Forked from GhostPack/SharpUpSharpUp is a C# port of various PowerUp functionality.
-
CS-Remote-OPs-BOF Public
Forked from trustedsec/CS-Remote-OPs-BOF -
CustomKeyboardLayoutPersistence Public
Forked from NtQuerySystemInformation/CustomKeyboardLayoutPersistenceAchieve execution using a custom keyboard layout
C++ UpdatedMar 14, 2022 -
PSBits Public
Forked from gtworek/PSBitsSimple (relatively) things allowing you to dig a bit deeper than usual.
PowerShell The Unlicense UpdatedJan 1, 2022 -
-
xPipe Public
Forked from xforcered/xPipeCobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
C UpdatedDec 8, 2021 -
SharpC2 Public
Forked from SharpC2/SharpC2Command and Control Framework written in C#.
C# GNU General Public License v3.0 UpdatedNov 25, 2021 -
-
DLL-Hijack-Search-Order-BOF Public
Forked from EspressoCake/DLL-Hijack-Search-Order-BOFDLL Hijack Search Order Enumeration BOF
C UpdatedNov 2, 2021 -
InlineExecute-Assembly Public
Forked from anthemtotheego/InlineExecute-AssemblyInlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditiona…
C UpdatedOct 26, 2021 -
CS-Situational-Awareness-BOF Public
Forked from trustedsec/CS-Situational-Awareness-BOFSituational Awareness commands implemented using Beacon Object Files
C GNU General Public License v2.0 UpdatedOct 10, 2021 -
PPLdump Public
Forked from itm4n/PPLdumpDump the memory of a PPL with a userland exploit
C MIT License UpdatedOct 10, 2021 -
Firewall_Walker_BOF Public
Forked from EspressoCake/Firewall_Walker_BOFA BOF to interact with COM objects associated with the Windows software firewall.
C++ UpdatedOct 9, 2021 -
DarkLoadLibrary Public
Forked from bats3c/DarkLoadLibraryLoadLibrary for offensive operations
C UpdatedOct 8, 2021 -
LOLBAS Public
Forked from LOLBAS-Project/LOLBASLiving Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
XSLT UpdatedSep 19, 2021 -
XLMMacroDeobfuscator Public
Forked from DissectMalware/XLMMacroDeobfuscatorExtract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
-
WinRpcFunctions Public
Forked from Cyb3rWard0g/WinRpcFunctionsPowerShell GNU General Public License v3.0 UpdatedJun 25, 2021 -
Mandiant-Azure-AD-Investigator Public
Forked from mandiant/Mandiant-Azure-AD-Investigator -
sunburst_countermeasures Public
Forked from mandiant/sunburst_countermeasuresYARA Other UpdatedDec 16, 2020 -
TaskManagerBitmap Public
Forked from markrussinovich/TaskManagerBitmapDisplays a bitmap on Task Manager's CPU activity view. For systems with > 64 CPUs.
C++ UpdatedDec 2, 2020 -
signature-base Public
Forked from Neo23x0/signature-baseSignature base for my scanner tools
Python GNU General Public License v3.0 UpdatedNov 24, 2020 -
Raccine Public
Forked from Neo23x0/RaccineA Simple Ransomware Vaccine
C++ The Unlicense UpdatedNov 14, 2020 -
pe-sieve Public
Forked from hasherezade/pe-sieveScans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
-
DidierStevensSuite Public
Forked from DidierStevens/DidierStevensSuitePlease no pull requests for this repository. Thanks!
YARA UpdatedMar 30, 2020