public-mirrors/LOLBAS
1
0
Fork 0
mirror of https://github.com/LOLBAS-Project/LOLBAS synced 2025-11-04 02:29:34 +01:00
Code Issues Projects Releases Wiki Activity
177 Commits 4 Branches 0 Tags
80295ef86512f0ce819bb13b98ee1e9babdd9645
Commit Graph

177 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Oddvar Moe
80295ef865 Merge pull request #54 from ForensicITGuy/ntdsutil 
Ntdsutil & Rasautou addition
 2020-03-16 20:06:54 +01:00
Oddvar Moe
81c363ac8a Adjustment to vbc.yml contribution 2020-03-16 19:55:27 +01:00
Oddvar Moe
84c613b363 Merge pull request #59 from leo1-1/master 
Create vbc.yml
 2020-03-16 19:49:21 +01:00
leo1-1
c7c93e9f95 Create vbc.yml 2020-02-27 17:13:07 +02:00
Oddvar Moe
acecdcf3df Netsh contribution from Freddie Bar-Smith - Thank you 2020-01-23 09:07:40 +01:00
Oddvar Moe
94708ac5d6 Added links to obfuscation technique from Sailay(valen) on rundll32 2020-01-23 08:57:43 +01:00
Tony M Lambert
e2f217c777 ntdsutil addition 2020-01-10 22:53:34 -06:00
Tony M Lambert
99b87fdc13 Rasautou addition 2020-01-10 22:52:15 -06:00
Oddvar Moe
ecc94c2d09 Adjusted GfxDownloadWrapper 2020-01-07 09:08:13 +01:00
Oddvar Moe
71aec7465b Minor adjustments to GfxDownloadWrapper.yml 2020-01-07 09:03:42 +01:00
Oddvar Moe
aada926e6f Merge pull request #52 from jesgal/patch-1 
Create GfxDownloadWrapper.yml
 2020-01-07 09:00:58 +01:00
Oddvar Moe
22ef6bfc63 Added additional paths to CL_MutexVerifiers.ps1 - input from @shilpeshTrivedi 2020-01-07 08:45:25 +01:00
Oddvar Moe
7030e00929 Capitalized dotnet name 2020-01-07 08:40:24 +01:00
Oddvar Moe
e1b36a25bd Rename dotnet.yml to Dotnet.yml 2020-01-07 08:37:36 +01:00
Oddvar Moe
acd38cec9e Merge pull request #49 from felamos/master 
Create dotnet.yml
 2020-01-07 08:32:35 +01:00
jesgal
c9e608ce0f Update GfxDownloadWrapper.yml 2019-12-27 17:11:30 +01:00
jesgal
a057cf2420 Create GfxDownloadWrapper.yml 
GfxDownloadWrapper.exe downloads the content that returns <URL> and writes it to the file <DESTINATION FILE PATH>. The binary is signed by "Microsoft Windows Hardware", "Compatibility Publisher", "Microsoft Windows Third Party Component CA 2012", "Microsoft Time-Stamp PCA 2010", "Microsoft Time-Stamp Service".
 2019-12-27 17:02:34 +01:00
Ayush Sahay
5cb17cfb26 Create dotnet.yml 2019-12-11 15:53:12 +05:30
Oddvar Moe
94a295213e Added Dump example to TTTracer.exe 2019-11-18 12:50:49 +01:00
Oddvar Moe
e0db5721ff Added Dump Example to TTTracer.exe 2019-11-18 12:47:51 +01:00
Oddvar Moe
4663c13324 Adjustment 2019-11-05 15:47:20 +01:00
Oddvar Moe
8d74b3062f Adjustment 2019-11-05 14:36:53 +01:00
Oddvar Moe
f9a7c42a85 Added TTTracer.exe - Thanks Onur Ulusoy 2019-11-05 12:12:46 +01:00
Oddvar Moe
13093c879e Updated odbcconf.exe with discovery from @Hexacorn <3 2019-10-24 10:01:44 +02:00
Oddvar Moe
cb9fa974dd Merge pull request #46 from felamos/patch-1 
Create devtoolslauncher.yml
 2019-10-07 23:56:01 +02:00
Oddvar Moe
7469812286 Update and rename devtoolslauncher.yml to Devtoolslauncher.yml 2019-10-07 23:55:44 +02:00
Oddvar Moe
1315c33ffc Merge pull request #45 from freddiebarrsmith/at_exe 
Adding At.exe
 2019-10-07 23:51:57 +02:00
Oddvar Moe
8eb582de42 Update At.yml 2019-10-07 23:51:26 +02:00
Ayush Sahay
134b272567 Update devtoolslauncher.yml 2019-10-07 12:15:47 +05:30
Ayush Sahay
0fe0504622 Update devtoolslauncher.yml 2019-10-04 10:20:38 +05:30
Ayush Sahay
48ed8f7914 Create devtoolslauncher.yml 2019-10-04 09:29:59 +05:30
freddie
9f47e26f16 Adding At.exe, for submission to LOLbas list, with proof of malware using it in wild :O 2019-09-21 03:19:25 +01:00
Oddvar Moe
32757cd0c3 Added Office binaries from jreegun to the project. Pull request 42 2019-09-17 22:58:03 +02:00
Oddvar Moe
0644ac30d7 Added Office binaries from jreegun to the project. Pull request 42 2019-09-17 22:44:27 +02:00
Oddvar Moe
ed266c0983 Fixed some typos 2019-09-17 20:45:49 +02:00
Oddvar Moe
8762fc5735 Acknowledgement fix for comsvcs 2019-09-16 09:50:01 +02:00
Oddvar Moe
4ebf1ac4f7 Adjusted case sensitive type in yml file for Comsvcs 2019-09-16 09:44:14 +02:00
Oddvar Moe
11c6c7c48d Adjusted 2019-09-16 09:38:05 +02:00
Oddvar Moe
f9f381d616 Merge pull request #44 from plowsec/master 
Add Comsvcs.yml: dump lsass via signed DLL.
 2019-09-16 09:33:40 +02:00
plowsec
dd5df7cf3e Add Comsvcs.yml: dump lsass via signed DLL. 2019-08-30 14:12:46 +02:00
Oddvar Moe
5b63815c0a Updated update and squirrel with updaterollback parameter 2019-07-02 09:06:19 +02:00
Oddvar Moe
8fcc9a105a Fixed spacing error 2019-06-28 18:07:24 +02:00
Oddvar Moe
8528caf21d Added Acknowledgement to wsl.exe 2019-06-28 18:05:34 +02:00
Oddvar Moe
f77b3b4019 Fixed spacing issue 2019-06-28 17:53:45 +02:00
Oddvar Moe
dd545693da Merge pull request #40 from NotoriousRebel/master 
Create Wsl.yml
 2019-06-28 17:50:13 +02:00
NotoriousRebel
ff0155f599 Moved Wsl.yml location to OtherMSBinaries and added another example for possible usecases. 2019-06-28 09:20:56 -04:00
Oddvar Moe
e05ae6c051 Adjusted Update and Squirrel 2019-06-28 09:05:27 +02:00
Oddvar Moe
3be3e5f3f8 Added link to reegun blog 2019-06-28 08:48:41 +02:00
NotoriousRebel
ff7dd5893b Added Wsl.yml 2019-06-27 15:39:12 -04:00
Oddvar Moe
fa72af4532 Update README.md 2019-06-27 17:47:21 +02:00