Lists (3)
Stars
ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.
An Awesome List of Log4Shell resources to help you stay informed and secure! 🔒
DLL Password Filter Implant with Exfiltration Capabilities
A light-weight first-stage C2 implant written in Nim (and Rust).
A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
Portable Executable reversing tool with a friendly GUI
C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.
SysWhispers on Steroids - AV/EDR evasion via direct system calls.
A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX
This repo contains some Amsi Bypass methods i found on different Blog Posts.
A python3 remake of the classic "tree" command with the additional feature of searching for user provided keywords/regex in files, highlighting those that contain matches.
A collaborative, multi-platform, red teaming framework
rasta-mouse / ThreatCheck
Forked from matterpreter/DefenderCheckIdentifies the bytes that Microsoft Defender / AMSI Consumer flags on.
Identifies the bytes that Microsoft Defender flags on.
Nim-based assembly packer and shellcode loader for opsec & profit
A modern, high customizable, responsive Jekyll theme for documentation with built-in search.
Extract credentials from lsass remotely
Tool to audit and attack LAPS environments
Vulhub Vulnerability Reproduction Designated Platform
Deathstar is an Empire plugin that automates gaining Domain and/or Enterprise Admin rights in Active Directory environments using common offensive tactics, techniques, and procedures (TTPs).
AV/EDR Evasion Lab for Training & Learning Purposes