G0ldenGunSec

Results 8 repositories owned by G0ldenGunSec

backdoorLnkMacroStagerObfuscated

18
Stars
8
Forks
Watchers

Obfuscated Powershell Empire 2.x stager that allows for creation of a macro which uses VBA to backdoor .lnk files on the system. This is done to obtain a shell via follow-up user interaction natively...

verified publisher icon G0ldenGunSec

GetWebDAVStatus

82
Stars
20
Forks
Watchers

Determine if the WebClient Service (WebDAV) is running on a remote system

verified publisher icon G0ldenGunSec

PowerPriv

123
Stars
28
Forks
Watchers

A Powershell implementation of PrivExchange designed to run under the current user's context

verified publisher icon G0ldenGunSec

PreliminaryBackdoorLnkMacroStager

6
Stars
5
Forks
Watchers

Original testing version of the backdoorLnkMacroStager - please reference backdoorLnkMacroStagerObfuscated or backdoorLnkMacroStagerCellEmbed for current versions

verified publisher icon G0ldenGunSec

SharpSecDump

552
Stars
77
Forks
Watchers

.Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py

verified publisher icon G0ldenGunSec

SharpTransactedLoad

157
Stars
24
Forks
Watchers

Load .net assemblies from memory while having them appear to be loaded from an on-disk location.

verified publisher icon G0ldenGunSec

wmiServSessEnum

31
Stars
12
Forks
Watchers

.net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems

verified publisher icon G0ldenGunSec

DayBird

24
Stars
8
Forks
Watchers

Extension functionality for the NightHawk operator client

verified publisher icon G0ldenGunSec