{"id":13628508,"url":"https://github.com/cobbr/SharpSploit","last_synced_at":"2025-04-17T04:31:58.814Z","repository":{"id":41497654,"uuid":"149621459","full_name":"cobbr/SharpSploit","owner":"cobbr","description":" SharpSploit is a .NET post-exploitation library written in C#","archived":false,"fork":false,"pushed_at":"2021-08-12T18:23:15.000Z","size":19752,"stargazers_count":1789,"open_issues_count":13,"forks_count":312,"subscribers_count":81,"default_branch":"master","last_synced_at":"2025-04-07T23:05:40.883Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"https://sharpsploit.cobbr.io/api/","language":"C#","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-3-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/cobbr.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2018-09-20T14:22:37.000Z","updated_at":"2025-04-07T09:19:08.000Z","dependencies_parsed_at":"2022-08-10T02:35:05.347Z","dependency_job_id":null,"html_url":"https://github.com/cobbr/SharpSploit","commit_stats":null,"previous_names":[],"tags_count":7,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cobbr%2FSharpSploit","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cobbr%2FSharpSploit/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cobbr%2FSharpSploit/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cobbr%2FSharpSploit/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/cobbr","download_url":"https://codeload.github.com/cobbr/SharpSploit/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":249315950,"owners_count":21249865,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-01T22:00:53.204Z","updated_at":"2025-04-17T04:31:54.332Z","avatar_url":"https://github.com/cobbr.png","language":"C#","funding_links":[],"categories":["Uncategorized","[↑](#table-of-contents) Misc","C# (212)","C# #"],"sub_categories":["Uncategorized","Post Exploitation Frameworks \u0026 Tools"],"readme":"# SharpSploit\n\n[SharpSploit](https://github.com/cobbr/SharpSploit) is a .NET post-exploitation library written in C# that aims to highlight the attack surface of .NET and make the use of offensive .NET easier for red teamers.\n\n[SharpSploit](https://github.com/cobbr/SharpSploit) is named, in part, as a homage to the [PowerSploit](https://github.com/PowerShellMafia/PowerSploit) project, a personal favorite of mine! While [SharpSploit](https://github.com/cobbr/SharpSploit) does port over some functionality from [PowerSploit](https://github.com/PowerShellMafia/PowerSploit), my intention is **not** at all to create a direct port of [PowerSploit](https://github.com/PowerShellMafia/PowerSploit). [SharpSploit](https://github.com/cobbr/SharpSploit) will be it's own project, albeit with similar goals to [PowerSploit](https://github.com/PowerShellMafia/PowerSploit).\n\n### Intro\n\nYou'll find some details and motivations for the SharpSploit project in this [introductory blog post](https://cobbr.io/SharpSploit.html).\n\n### Documentation\n\nThe complete SharpSploit API docfx documentation is available [here](https://sharpsploit.cobbr.io/api/).\n\nFor an easier to read, high-level quick reference and summary of SharpSploit functionality, refer to the [SharpSploit - Quick Command Reference](https://github.com/cobbr/SharpSploit/blob/master/SharpSploit/SharpSploit%20-%20Quick%20Command%20Reference.md).\n\n### Credits\n\nI owe a ton of credit to a lot of people. Nearly none of `SharpSploit` is truly original work. `SharpSploit` ports many modules written in PowerShell by others, utilizes techniques discovered by others, and borrows ideas and code from other C# projects as well. With that being said, I'd like to thank the following people for contributing to the project (whether they know they did or not :)):\n\n* Justin Bui ([@youslydawg](https://twitter.com/youslydawg)) - For contributing the `SharpSploit.Enumeration.Host.CreateProcessDump()` function.\n* Matt Graeber ([@mattifestation](https://twitter.com/mattifestation)), Will Schroeder ([@harmj0y](https://twitter.com/harmj0y)), and Ruben ([@FuzzySec](https://twitter.com/fuzzysec)) - For their work on [PowerSploit](https://github.com/PowerShellMafia/PowerSploit).\n* Will Schroeder ([@harmj0y](https://twitter.com/harmj0y)) - For the [PowerView](https://github.com/PowerShellMafia/PowerSploit/blob/dev/Recon/PowerView.ps1) project.\n* Alexander Leary ([@0xbadjuju](https://twitter.com/0xbadjuju)) - For the [Tokenvator](https://github.com/0xbadjuju/Tokenvator) project.\n* James Foreshaw ([@tiraniddo](https://twitter.com/tiraniddo)) - For his discovery of the token duplication UAC bypass technique documented [here](https://tyranidslair.blogspot.com/2017/05/reading-your-way-around-uac-part-3.html).\n* Matt Nelson ([@enigma0x3](https://twitter.com/enigma0x3)) - For his [Invoke-TokenDuplication](https://github.com/enigma0x3/Misc-PowerShell-Stuff/blob/master/Invoke-TokenDuplication.ps1) implementation of the token duplication UAC bypass, as well his C# shellcode execution method.\n* Benjamin Delpy ([@gentilkiwi](https://twitter.com/gentilkiwi)) - For the [Mimikatz](https://github.com/gentilkiwi/mimikatz) project.\n* Casey Smith ([@subtee](https://twitter.com/subtee)) - For his work on a C# PE Loader.\n* Chris Ross ([@xorrior](https://twitter.com/xorrior)) - For his implementation of a Mimikatz PE Loader found [here](https://github.com/xorrior/Random-CSharpTools/blob/master/DllLoader/DllLoader/PELoader.cs).\n* Matt Graeber ([@mattifestation](https://twitter.com/mattifestation)) - For discovery of the AMSI bypass found [here](https://twitter.com/mattifestation/status/735261120487772160).\n* Lee Christensen ([@tifkin_](https://twitter.com/tifkin_)) - For the discovery of the PowerShell logging bypass found [here](https://github.com/leechristensen/Random/blob/master/CSharp/DisablePSLogging.cs).\n* All the contributors to [www.pinvoke.net](www.pinvoke.net) - For numerous PInvoke signatures.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcobbr%2FSharpSploit","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcobbr%2FSharpSploit","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcobbr%2FSharpSploit/lists"}