Skip to content

Simple powershell script to find living off land binaries and scripts on a system.

License

Notifications You must be signed in to change notification settings

NotoriousRebel/Find-LOLBAS

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

16 Commits
 
 
 
 
 
 

Repository files navigation

Find-LOLBAS

A simple Powershell script for enumerating living off the land binaries and scripts on a system.

Why

Manually verifying if the binaries or scripts are on the system
would take a while, with automating the process this increases overall productivity of redteamers
who need to quickly bypass applocker or need to execute code in unique ways.

How to Use?

By simply running the script the rest is taken care of!
The output will be on the screen for you to assess, it will be in the format
of the Binary or Script name, path, and an example command utilizing it.

License

This project is licensed under the BSD 3-Clause License - see the License file for details

Acknowledgments

This project wouldn't be possible without the LOLBAS project.

Roadmap

  • Add option to run script by executing C# code in Powershell
  • Add option to allow user to encode payload by loading Crypt32.dll

About

Simple powershell script to find living off land binaries and scripts on a system.

Topics

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published