hayasec Goto Github PK

reflectivedllinjection

Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

regeorg-weblogic

reGeorg的特殊版本，适用于老版本weblogic。

robber

Robber is open source tool for finding executables prone to DLL hijacking

rubeus-rundll32

Run Rubeus via Rundll32

rw_password

此项目用来提取收集以往泄露的密码中符合条件的强弱密码

sharp-suite

My musings with C#

sharpadidnsdump

c# implementation of Active Directory Integrated DNS dumping (authenticated user)

sharpallowedtoact

Computer object takeover through Resource-Based Constrained Delegation (msDS-AllowedToActOnBehalfOfOtherIdentity)

sharpallthethings

The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.

sharpattack

A simple wrapper for C# tools

sharpcollection

Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.

sharpdllproxy

Retrieves exported functions from a legitimate DLL and generates a proxy DLL source code/template for DLL proxy loading or sideloading

sharpdpapi

SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.

sharpedrchecker

Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories, installed services and each service binaries metadata, installed drivers and each drivers metadata, all for the presence of known defensive products such as AV's, EDR's and logging tools.

sharpkatz

Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands

sharpmapexec

sharpsocks

Tunnellable HTTP/HTTPS socks4a proxy written in C# and deployable via PowerShell

sharptools

Offensive C# Tradcraft

sharpview

C# implementation of harmj0y's PowerView

snaffler

a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )

srdi

Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode

ssh-mitm

ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation

standin

StandIn is a small .NET35/45 AD post-exploitation toolkit

sunflower_get_password

一款针对向日葵的识别码和验证码提取工具

superdllhijack

SuperDllHijack：A general DLL hijack technology, don't need to manually export the same function interface of the DLL, so easy! 一种通用Dll劫持技术，不再需要手工导出Dll的函数接口了

sweetpotato

Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019

tikitorch

Process Injection

uac_bypass_in_the_wild

Windows 10 UAC bypass for all executable files which are autoelevate true .

venom

Venom - A Multi-hop Proxy for Penetration Testers

wails

Create desktop apps using Go and Web Technologies.