This is your work, valued

Tim MalcomVetter

Elite
@malcomvetter

CSExec. An implementation of PSExec in C#

336

ManagedInjection. A proof of concept for dynamically loading .net assemblies at runtime with only a minimal convention pre-knowledge

164

NamedPipes. A pattern for client/server communication via Named Pipes via C#

98

UnstoppableService. A pattern for a self-installing Windows service in C# with the unstoppable attributes in C#.

66

WMIProcessWatcher. An example pattern in C# for using WMI to monitor process creation and termination events.

52

DnsCache. C++

46

AntiDebug. PoC: Prevent a debugger from attaching to managed .NET processes via a watcher process code pattern.

32

WcfScan. A tool for scanning NET.TCP WCF endpoints to test the security of their binding configurations.

31

ActiveDirectoryServices. A more full featured C# API for connecting to and managing Active Directory (AD) and Lightweight Directory (AD-LDS) instances, complete with consumer application examples.

25

WidgetSender. Intentionally Vulnerable Demo App: .NET MVC, WCF, WebAPI, Web Forms

22

ChromePasswords. C

19

WhoDis. An example pattern in C# for watching security events (logon/logoff/privilege)

17

SneakyService. A simple, minimal C# windows service implementation that can be used to demonstrate privilege escalation from misconfigured windows services.

16

BlueScreenOnExit. PoC of a protected process causing a blue screen if killed.

15

RunAs. An example in C# for programmatically calling UAC to escalate to admin

14

CertCheck. Programmatically access a TLS certificate chain in C++ and C#

12

TLAD. The Totally Legit Authentication Dialog

12

DieHard. PoC: process watcher patterns to make killing a process hard.

11

ProtectProcessFromJoeUser. PoC: Protecting Joe User from killing his own process.

9

kata. A collection of breach and post-exploitation kata for the red teamer to constantly train to maintain proficiency.

8

LuhnForce. A C# tool for brute forcing Credit Card numbers with valid Luhn checks.

7

HeapSurf. A credit card memory scraper written in C#

5

Trojan-RetailDiagnostics. C#

5

BurpHmac. An HMAC authentication header plugin for Burp Proxy, written in Python.

4

PlanetExpressStockTracker. A silly little example how to trojan a C# windows app, as demonstrated at the southwest region CCDC competition.

4

readline. A Pure C# GNU-Readline like library for .NET/.NET Core

3

SpoofParentProcess. C++

3

taskkill. C++

2

netstat. C++

2

WindowsSessions. C++

2

CAPE. Malware Configuration And Payload Extraction

2

Internal-Monologue. Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS

2

SharpInvoke-SMBExec. SMBExec C# module

1

dns. A DNS library written in C#

1

screenshot. C++

1

OpenAutoruns. :shield: An open-source Windows autoruns viewer, as a course project (SJTU-IS405).

1

jarm. Python

1

HappySad. Sometimes you just need a Happy EXE and a Sad EXE

1

SunburstStrings. C#

1