Awesome-Mirrors/my-infosec-awesome
1
0
Fork 0
mirror of https://github.com/pe3zx/my-infosec-awesome.git synced 2025-01-08 06:17:54 -05:00
Code Issues Packages Projects Releases Wiki Activity

Add: GetRektBoy724/SharpUnhooker to Defense Evasion section

Browse Source
This commit is contained in:
pe3zx 2021-10-27 16:29:56 +07:00
parent ce951e8b38
commit e6d0a0b7d9
1 changed files with 8 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
Offensive.md
View File

@ -1064,6 +1064,10 @@ Some tools can be categorized in more than one category. But because the current
<td><a href="https://github.com/EspressoCake/Toggle_Token_Privileges_BOF">EspressoCake/Toggle_Token_Privileges_BOF</a></td>
<td>Syscall BOF to arbitrarily add/detract process token privilege rights.</td>
</tr>
<tr>
<td><a href="https://github.com/GhostPack/Certify">GhostPack/Certify</a></td>
<td>Active Directory certificate abuse.</td>
</tr>
<tr>
<td><a href="https://github.com/GhostPack/ForgeCert">GhostPack/ForgeCert</a></td>
<td>ForgeCert uses the BouncyCastle C# API and a stolen Certificate Authority (CA) certificate + private key to forge certificates for arbitrary users capable of authentication to Active Directory.</td>
@ -1334,6 +1338,10 @@ Some tools can be categorized in more than one category. But because the current
<td><a href="https://github.com/Flangvik/RosFuscator">Flangvik/RosFuscator</a></td>
<td>YouTube/Livestream project for obfuscating C# source code using Roslyn</td>
</tr>
<tr>
<td><a href="https://github.com/GetRektBoy724/SharpUnhooker">GetRektBoy724/SharpUnhooker</a></td>
<td>C# Based Universal API Unhooker</td>
</tr>
<tr>
<td><a href="https://github.com/GetRektBoy724/TripleS">GetRektBoy724/TripleS</a></td>
<td>Syscall Stub Stealer - Freshly steal Syscall stub straight from the disk</td>
@ -2009,10 +2017,6 @@ Some tools can be categorized in more than one category. But because the current
<td><a href="https://github.com/FuzzySecurity/StandIn">FuzzySecurity/StandIn</a></td>
<td>StandIn is a small .NET35/45 AD post-exploitation toolkit</td>
</tr>
<tr>
<td><a href="https://github.com/GhostPack/Certify">GhostPack/Certify</a></td>
<td>Active Directory certificate abuse.</td>
</tr>
<tr>
<td><a href="https://github.com/improsec/ImproHound">improsec/ImproHound</a></td>
<td>Identify the attack paths in BloodHound breaking your AD tiering</td>