CodeXTF2 / WindowSpyLinks
WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.
☆277Updated 8 months ago
Alternatives and similar repositories for WindowSpy
Users that are interested in WindowSpy are comparing it to the libraries listed below
Sorting:
- A shellcode injection tool showcasing various process injection techniques☆136Updated last year
- ☆163Updated 2 years ago
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆154Updated last year
- Set of python scripts which perform different ways of command execution via WMI protocol.☆162Updated 2 years ago
- Evasive Golang Loader☆138Updated last year
- RDPCredentialStealer it's a malware that steal credentials provided by users in RDP using API Hooking with Detours in C++☆256Updated 2 years ago
- Documents Exfiltration project for fun and educational purposes☆143Updated 2 years ago
- Execute shellcode files with rundll32☆207Updated last year
- Python script for automating the creation of serverless cloud redirectors from Cobalt Strike malleable C2 profiles☆199Updated last year
- Github as C2 Demonstration , free API = free C2 Infrastructure☆142Updated 2 years ago
- Execute shellcode from a remote-hosted bin file using Winhttp.☆237Updated 2 years ago
- Patching AmsiOpenSession by forcing an error branching☆148Updated 2 years ago
- PowerShell runner for executing malicious payloads in order to bypass Windows Defender.☆74Updated 3 years ago
- ☆219Updated last year
- A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.☆300Updated 3 years ago
- PoC module to demonstrate automated lateral movement with the Havoc C2 framework.☆310Updated last year
- AV bypass while you sip your Chai!☆223Updated last year
- Weaponized HellsGate/SigFlip☆203Updated 2 years ago
- ☆165Updated 2 years ago
- ☆170Updated last year
- Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.☆311Updated 3 years ago
- 🐍 Double Venom (DVenom) is a tool that provides an encryption wrapper and loader for your shellcode.☆158Updated 2 years ago
- ☆245Updated 2 years ago
- 「💀」Proof of concept on BYOVD attack☆164Updated 10 months ago
- Collection of random RedTeam scripts.☆207Updated last year
- Generate Shellcode Loaders & Injects☆156Updated 2 years ago
- GregsBestFriend process injection code created from the White Knight Labs Offensive Development course☆196Updated 2 years ago
- PoC for dumping and decrypting cookies in the latest version of Microsoft Teams☆131Updated last year
- Modules used by the Havoc Framework☆252Updated last year
- A collection of Cobalt Strike Aggressor scripts.☆103Updated 3 years ago