Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

TypeScript

Python

CSS

R

Solidity

Crystal

Shell

Nix

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

Elm

Ada

R

Nix

Ruby

PowerShell

Kotlin

Elixir

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇯🇲 Jamaica

🇱🇾 Libya

🇭🇺 Hungary

🇸🇲 San Marino

🇦🇽 Åland Islands

🇬🇾 Guyana

🇬🇬 Guernsey

🇸🇷 Suriname

All Countries Compare Countries

Cn33liz/MSBuildShell

Stars
280
Rank 142,645 (Top 3 %)
Language
License
BSD 3-Clause "New...
Created over 7 years ago
Updated almost 5 years ago

Cn33liz/MSBuildShell

Cn33liz

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

MSBuildShell, a Powershell Host running within MSBuild.exe

MSBuildShell, a Powershell Host running within MSBuild.exe

This code let's you Bypass Application Whitelisting and Powershell.exe restrictions and gives you a shell that almost looks and feels like a normal Powershell session (Get-Credential, PSSessions -> Works, Tab Completion -> Unfortunately not). It will also bypass the Antimalware Scan Interface (AMSI), which provides enhanced malware protection for Powershell scripts.

License: BSD 3-Clause

Save This File And Execute The Following Command:

C:\Windows\Microsoft.NET\Framework\v4.0.30319\msbuild.exe C:\Scripts\MSBuildShell.csproj

Or

C:\Windows\Microsoft.NET\Framework64\v4.0.30319\msbuild.exe C:\Scripts\MSBuildShell.csproj

Author and founder of the MSBuild Application Whitelisting Bypass code: Casey Smith, Twitter: @subTee

Powershell Host Code: Original from Microsoft (MSDN), modified by Cn33liz, Twitter: @Cneelis

Amsi Bypass Oneliner (obfuscated with @danielhbohannon Invoke-Obfuscation): Matt Graeber, Twitter: @mattifestation

p0wnedShell

PowerShell Runspace Post Exploitation Toolkit

StarFighters

A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.

CScriptShell

CScriptShell, a Powershell Host running within cscript.exe

JSMeter

JavaScript Reversed TCP Meterpreter Stager

TpmInitUACBypass

Bypassing User Account Control (UAC) using TpmInit.exe

VBSMeter

VBS Reversed TCP Meterpreter Stager

SmashedPotato

p0wnedLoader

p0shKiller

HSEVD-StackOverflowX64

HackSys Extreme Vulnerable Driver - Windows 10 x64 StackOverflow Exploit with SMEP Bypass

MacroMeter

VBA Reversed TCP Meterpreter Stager

MS17-012

MS17-012 - COM Session Moniker EoP Exploit running within MSBuild.exe

SharpCat

SharpCat - A Simple Reversed Command Shell which can be started using InstallUtil (Bypassing AppLocker)

EasySystem

Quick and dirty System (Power)Shell using NamedPipe impersonation.

TpmInitUACAnniversaryBypass

Bypassing User Account Control (UAC) using TpmInit.exe

HSEVD-ArbitraryOverwriteGDI

HackSys Extreme Vulnerable Driver - ArbitraryOverwrite Exploit using GDI

HSEVD-StackOverflow

HackSys Extreme Vulnerable Driver - StackOverflow Exploit

p0wnedReverse

PowerShell Runspace Connect-Back Shell

HSEVD-ArbitraryOverwrite

HackSys Extreme Vulnerable Driver - ArbitraryOverwrite Exploit

HSEVD-VariousExploits

HackSys Extreme Vulnerable Driver - Various Windows 7 x86 Kernel Exploits

HSEVD-StackCookieBypass

HackSys Extreme Vulnerable Driver - StackOverflow with Stack Cookie Bypass Exploit

HSEVD-StackOverflowGDI

HackSys Extreme Vulnerable Driver - Windows 10 x64 StackOverflow Exploit using GDI

HackTheBox-Jail

HTB Jail Remote Exploit By Cneeliz - 2017

HSEVD-ArbitraryOverwriteLowIL

HackSys Extreme Vulnerable Driver - ArbitraryOverwrite Exploit using GDI -> Low Integrity to System

HackTheBox-Smasher

FortiParse

Fortigate Configuration Parser