Skip to content

/ SharpLocker

No description, website, or topics provided.
C#
  1. C# 100.0%
Branch: master
Find file
Clone or download

Clone with HTTPS

Use Git or checkout with SVN using the web URL.

Open in Desktop Download ZIP

Launching GitHub Desktop

If nothing happens, download GitHub Desktop and try again.

Launching GitHub Desktop

If nothing happens, download GitHub Desktop and try again.

Launching Xcode

If nothing happens, download Xcode and try again.

Launching Visual Studio

If nothing happens, download the GitHub extension for Visual Studio and try again.

@Pickfordmatt
Pickfordmatt Merge pull request #8 from NicholasSheehan/ClassRename 
Renamed "Form1" to "LockScreenForm"
Latest commit ce8463c Feb 5, 2020
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
SharpLocker
.gitattributes Add .gitignore and .gitattributes. May 31, 2019
.gitignore Add .gitignore and .gitattributes. May 31, 2019
README.md Update README.md Feb 4, 2020
SharpLocker.sln Changed all references of "WindowsFormsApp9" to "SharpLocker" Feb 2, 2020
sharplocker.png Add files via upload May 31, 2019

README.md

SharpLocker

SharpLocker helps get current user credentials by popping a fake Windows lock screen, all output is sent to Console which works perfect for Cobalt Strike. It is written in C# to allow for direct execution via memory injection using techniques such as execute-assembly found in Cobalt Strike or others, this method prevents the executable from ever touching disk. It is NOT intended to be compilled and run locally on a device.

Works

  • Single/Multiple Monitors
  • Windows 10
  • Main monitor needs to be 1080p otherwise the location of the elements are wrong

Working SharpLocker

How to

  • Compile SharpLocker from source via VisualStudio etc
  • Within a Cobalt Strike implant run execute-assembly C:/{location of exe}
  • Pray and wait for creds
You can’t perform that action at this time.