Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

Crystal

Clojure

OCaml

Nix

Lua

Elixir

C#

Solidity

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

C

C#

Elm

Scala

Rust

Kotlin

Python

Crystal

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇨🇱 Chile

🇬🇲 The Gambia

🇮🇳 India

Kosovo

🇰🇮 Kiribati

🇧🇷 Brazil

🇵🇾 Paraguay

🇳🇨 New Caledonia

All Countries Compare Countries

G0ldenGunSec/backdoorLnkMacroStagerObfuscated

Stars
17
Rank 1,251,917 (Top 25 %)
Language
Python
Created almost 7 years ago
Updated almost 7 years ago

G0ldenGunSec/backdoorLnkMacroStagerObfuscated

G0ldenGunSec

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Obfuscated Powershell Empire 2.x stager that allows for creation of a macro which uses VBA to backdoor .lnk files on the system. This is done to obtain a shell via follow-up user interaction natively through powershell, in order to evade tools that monitor process execution. Backdoors are self-cleaning on execution.

SharpSecDump

.Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py

SharpTransactedLoad

Load .net assemblies from memory while having them appear to be loaded from an on-disk location.

PowerPriv

A Powershell implementation of PrivExchange designed to run under the current user's context

GetWebDAVStatus

Determine if the WebClient Service (WebDAV) is running on a remote system

wmiServSessEnum

.net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems

DayBird

Extension functionality for the NightHawk operator client

PreliminaryBackdoorLnkMacroStager

Original testing version of the backdoorLnkMacroStager - please reference backdoorLnkMacroStagerObfuscated or backdoorLnkMacroStagerCellEmbed for current versions

backdoorLnkMacroStagerCellEmbed

Powershell Empire 2.x stager that allows for creation of a macro which uses VBA to backdoor .lnk files on the system. This is done to obtain a shell via follow-up user interaction natively through powershell, in order to evade tools that monitor process execution. Data is embedded in .xls cells and called in the macro to evade detection. Backdoors are self-cleaning on execution.

Service-Executable-Permissions-Checker