ObjectWalker v2.1.6 by Rémi Gascou
#Python module to explore the object tree to extract paths to interesting targets / objects in memory
✨️ New p0wny@shell release!
➡️ https://github.com/flozz/p0wny-shell
It now tries different execution functions (exec, shell_exec, system, passthru, popen, proc_open) to run commands to bypass disabled functions! 😎️
Process_String_Extractor.ps1
This scriplet is also able to extract Cookies for Microsoft O365 / Microsoft Azure PTC Attack
https://gist.github.com/LuemmelSec/3f2c4b7642dc7b2ae63601ed02ec3db5
A simple client for LOLDrivers
LOLDrivers
Living Off The Land Drivers is a curated list of Microsoft Windows drivers used by adversaries
hem-hashes
HIEW module to calc MD5, SHA-1 & SHA-256 hashes of a given file/block
Hunt-Weird-Syscalls
This project uses kernel based
ETW
providers to monitor for IOCs
ScareCrow v5.0.0
Payload creation framework designed around EDR bypass
LDAP V3 pure Python client
TLS channel binding during NTML auth
PE-Obfuscator by TheD1rkMtr
YaraDBG v0.0.3
TokenUniverse v0.3
Advanced tool for working with access tokens & Windows Security Policy
247365