ACE-Responder / RogueSliverLinks
A suite of tools to disrupt campaigns using the Sliver C2 framework.
☆280Updated 2 years ago
Alternatives and similar repositories for RogueSliver
Users that are interested in RogueSliver are comparing it to the libraries listed below
Sorting:
- ☆289Updated 2 years ago
- lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection☆245Updated 4 months ago
- Kill AV/EDR leveraging BYOVD attack☆375Updated 2 years ago
- A BloodHound collector for Microsoft Configuration Manager☆348Updated 3 months ago
- ☆326Updated 2 months ago
- ☆190Updated last year
- An interactive shell to spoof some LOLBins command line☆186Updated last year
- Materials for the workshop "Red Team Ops: Havoc 101"☆386Updated last year
- Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-nat…☆250Updated 6 months ago
- Amsi Bypass payload that works on Windwos 11☆375Updated 2 years ago
- ☆305Updated 7 months ago
- Find potential DLL Sideloads on your windows computer☆214Updated 9 months ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆336Updated 11 months ago
- Lord Of Active Directory - automatic vulnerable active directory on AWS☆146Updated 2 years ago
- ☆300Updated last year
- Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin pr…☆238Updated 2 years ago
- Impacket is a collection of Python classes for working with network protocols.☆296Updated 3 months ago
- Collection of random RedTeam scripts.☆207Updated last year
- Collection of OPSEC Tradecraft and TTPs for Red Team Operations☆311Updated last month
- Python implementation of GhostPack's Seatbelt situational awareness tool☆266Updated 11 months ago
- Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST☆193Updated last year
- Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC☆386Updated last month
- ☆213Updated 4 months ago
- Different methods to get current username without using whoami☆177Updated last year
- Leak of any user's NetNTLM hash. Fixed in KB5040434☆258Updated last year
- A comprehensive workshop aimed to equip participants with an in-depth understanding of modern Command and Control (C2) concepts, focusing…☆105Updated 2 years ago
- Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic lo…☆268Updated 2 years ago
- Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …☆218Updated last year
- .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation☆394Updated 3 months ago
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆252Updated 8 months ago