- JuicyPotato WebShell version, modified from juicy-potato
- PrintSpoofer WebShell version, modified from PrintSpoofer
- PrintSpoofer Reflective DLL version, via ReflectiveDLLInjection
- WMIExec - invoke
WMI - Win32_Process::Createto execute command on remote machine - KeyLogger - keyboard logger via Windows message hook
- ArgumentSpoofer - spoof command line parameters, like
arguecommand in CobaltStrike (version >= 3.13) - OXIDNicResolver - use native API to retrieve nic's network address from remote machine via RPC/135 without authentication
- procdump - dump full(type 0x02) process memory via
MiniDumpWriteDump(unhook if necessary) - dump-lsass-via-rpc-addssp - code from xpn, use
AddSecurityPackageRPC call to add(inject) SSP DLL - DllHijackDigger - dig runtime dynamic linking DLL hijack automatically
- pth - mimikatz
sekurlsa::pth&sekurlsa::msvimplementations written in pure Rust
forked from EddieIvan01/win32api-practice
-
Notifications
You must be signed in to change notification settings - Fork 0
TechThupport/win32api-practice
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
About
Offensive tools written for practice purposes
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published
Languages
- C 49.4%
- Rust 35.9%
- C 9.9%
- C# 4.8%