Mohamed El Azaar's repositories
GadgetToJScript
A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from JS/VBS/VBA based scripts.
ExecuteAssembly
Load/Inject .NET assemblies by; reusing the host (spawnto) process loaded CLR AppDomainManager, Stomping Loader/.NET assembly PE DOS headers, Unlinking .NET related modules, bypassing ETW+AMSI, avoiding EDR hooks via NT static syscalls (x64) and hiding imports by dynamically resolving APIs (hash).
NTLMRelay2Self
An other No-Fix LPE, NTLMRelay2Self over HTTP (Webdav).
NET-Assembly-Inject-Remote
.NET assembly local/remote loading/injection into memory.
CSharpScripts
Collection of C# scripts
DidierStevensSuite
Please no pull requests for this repository. Thanks!
ProcessHider
Post-exploitation tool for hiding processes from monitoring applications
elk-detection-lab
An ELK environment containing interesting security datasets.
ICS-Security-Tools
Tools, tips, tricks, and more for exploring ICS Security.
maruos
Your phone is your PC.