Aetsu / Neton
Neton is a tool for getting information from Internet connected sandboxes
☆93Updated 2 years ago
Alternatives and similar repositories for Neton:
Users that are interested in Neton are comparing it to the libraries listed below
- Bypass Detection By Randomising ROR13 API Hashes☆138Updated 3 years ago
- 汇编语言编写Shellcode加载器源代码 https://payloads.online/archivers/2022-02-16/1/☆78Updated 2 years ago
- Winsocket for Cobalt Strike.☆98Updated last year
- ☆52Updated 3 years ago
- A spin-off research project. Cobalt Strike x Notion collab 2022☆53Updated 3 years ago
- 针对多个框架的高度自定义的内存马一键打入工具 | A highly customized memory shell one-click injection tool for multiple frameworks☆47Updated last year
- Write-up for another forgotten Windows vulnerability (0day): Microsoft Windows Contacts (VCF/Contact/LDAP) syslink control href attribute…☆154Updated last year
- 🔎🪲 Malleable C2 profiles parser and assembler written in golang☆65Updated 11 months ago
- Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.☆149Updated 2 years ago
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆111Updated 2 years ago
- Impacket is a collection of Python classes for working with network protocols.☆39Updated 3 years ago
- Simple LSASS Dumper created using C++ as an alternative to using Mimikatz memory dumper☆54Updated last year
- A Cobalt Strike memory evasion loader for redteamers☆99Updated 2 years ago
- Dumping LSASS with a duplicated handle from custom LSA plugin☆200Updated 3 years ago
- TeamServer.prop is an optional properties file used by the Cobalt Strike teamserver to customize the settings used to validate screenshot…☆65Updated 9 months ago
- Convert shellcode generated using pe_2_shellcode to cdb format.☆96Updated 3 years ago
- Exploits undocumented elevated COM interface ICMLuaUtil via process spoofing to edit registry then calls ColorDataProxy to trigger UAC b…☆138Updated 2 years ago
- Tool to start processes as SYSTEM using token duplication☆38Updated 4 years ago
- VM Escape for Parallels Desktop <18.1.1☆37Updated 2 years ago
- Amaterasu terminates, or inhibits, protected processes such as application control and AV/EDR solutions by leveraging the Sysinternals Pr…☆72Updated last year
- A small (Edited) POC to make defender useless by removing its token privileges and lowering the token integrity☆32Updated 2 years ago
- PoC for the CVE-2022-41080 , CVE-2022-41082 and CVE-2022-41076 Vulnerabilities Affecting Microsoft Exchange Servers☆92Updated 2 years ago
- This aggressor script uses a beacon's note field to indicate the health status of a beacon.☆142Updated 3 years ago
- the metasploit script(POC) about CVE-2022-41040. Microsoft Exchange are vulnerable to a server-side request forgery (SSRF) attack. An aut…☆34Updated 2 years ago
- my learning case about windows☆21Updated 3 years ago
- Case for CVE-2022-30778☆23Updated 2 years ago
- AV/EDR evasion via direct system calls.☆108Updated last year
- Little program written in C# to bypass EDR hooks and dump the content of the lsass process☆61Updated 3 years ago
- Active Directory password spraying tool. Auto fetches user list and avoids potential lockouts.☆130Updated 3 years ago
- ☆238Updated last year