CroodSolutions / AutoRMMLinks
AutoRMM is a collection of scripts and instructions we are organizing, to test delivery mechanisms for RMM and screen sharing tools, along with post exploitation strategies for blue and red teams wanting to more realistically simulate adversary capabilities using these strategies.
☆89Updated 2 months ago
Alternatives and similar repositories for AutoRMM
Users that are interested in AutoRMM are comparing it to the libraries listed below
Sorting:
- BeaconatorC2 is a framework for red teaming and adversarial emulation, providing a full-featured management interface, along with a catal…☆83Updated last week
- Persist like a Dodder☆65Updated 5 months ago
- Source code and examples for PassiveAggression☆63Updated last year
- Lifetime AMSI bypass.☆35Updated 6 months ago
- Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…☆61Updated this week
- Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.☆23Updated 9 months ago
- ☆24Updated 8 months ago
- ☆34Updated 3 months ago
- POC tool to abuse windows server failover clusters☆45Updated 2 months ago
- Your Skyfall Infrastructure Pack☆77Updated last week
- Sh3ller is a lightweight C2 framework in its simplest form.☆31Updated last month
- ☆51Updated 11 months ago
- Permanently disable EDRs as local admin☆118Updated 2 weeks ago
- GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…☆34Updated 11 months ago
- Payload Generation Workflow☆40Updated 3 months ago
- ☆69Updated last year
- Deploy a phishing infrastructure on the fly.☆76Updated 10 months ago
- Microsoft Graph API post-exploitation toolkit☆94Updated last year
- A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.☆88Updated 9 months ago
- ☆38Updated 4 months ago
- Tool to extract username and password of current user from PanGPA in plaintext☆88Updated 10 months ago
- ☆41Updated 8 months ago
- This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.☆90Updated last year
- BypassIT is a framework for covert malware delivery and post-exploitation using AutoIT for red / blue team self assessment.☆43Updated 3 months ago
- Blog/Journal on how to backdoor VSCode extensions☆74Updated 3 months ago
- An Ansible collection that installs an ADFS deployment with optional configurations.☆42Updated 10 months ago
- Situational Awareness script to identify how and where to run implants☆67Updated 10 months ago
- ☆54Updated 4 months ago
- Windows Administrator level Implant.☆49Updated last year
- Living Off the Foreign Land setup scripts☆71Updated 8 months ago