D00MFist / Mystikal

Related projects: ⓘ

• its-a-feature / bifrost
  Objective-C library and console to interact with Heimdal APIs for macOS Kerberos
  ☆138Updated last year
• CyborgSecurity / PoisonApple
  macOS persistence tool
  ☆221Updated 2 years ago
• byt3bl33d3r / pyMalleableC2
  Python interpreter for Cobalt Strike Malleable C2 Profiles. Allows you to parse, build and modify them programmatically.
  ☆262Updated 4 months ago
• slyd0g / WhiteChocolateMacademiaNut
  Interact with Chromium-based browsers' debug port to view open tabs, installed extensions, and cookies
  ☆152Updated last year
• D00MFist / PersistentJXA
  Collection of macOS persistence methods and miscellaneous tools in JXA
  ☆260Updated last year
• bananabr / TimeException
  A tool to find folders excluded from AV real-time scanning using a time oracle
  ☆230Updated 7 months ago
• its-a-feature / offensive_macos
  Tracking of offensive macOS tooling, blogs, and related helpful information
  ☆146Updated 3 years ago
• D00MFist / Go4aRun
  Shellcode runner in GO that incorporates shellcode encryption, remote process injection, block dlls, and spoofed parent process
  ☆227Updated 4 years ago
• mdsecactivebreach / Farmer
  ☆341Updated 3 years ago
• C-Sto / gosecretsdump
  Dump ntds.dit really fast
  ☆365Updated 2 years ago
• xforcered / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆412Updated 2 years ago
• boku7 / azureOutlookC2
  Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…
  ☆457Updated last year
• samratashok / RACE
  RACE is a PowerShell module for executing ACL attacks against Windows targets.
  ☆207Updated last year
• Verizon / redshell
  An interactive command prompt for red teaming and pentesting. Automatically pushes commands through SOCKS4/5 proxies via proxychains. Opt…
  ☆205Updated 2 years ago
• nccgroup / acCOMplice
  Tools for discovery and abuse of COM hijacks
  ☆282Updated 4 years ago
• RiccardoAncarani / LiquidSnake
  LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript
  ☆328Updated 3 years ago
• cedowens / MacC2
  ☆113Updated this week
• xorrior / macOSTools
  macOS Offensive Tools
  ☆258Updated 11 months ago
• mlgualtieri / NTLMRawUnHide
  NTLMRawUnhide.py is a Python3 script designed to parse network packet capture files and extract NTLMv2 hashes in a crackable format. The …
  ☆300Updated 10 months ago
• xforcered / WFH
  ☆180Updated 2 years ago
• MythicAgents / hermes
  Swift 5 macOS agent
  ☆98Updated last month
• zer1t0 / ticket_converter
  A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.
  ☆163Updated 2 years ago
• deepinstinct / LsassSilentProcessExit
  Command line interface to dump LSASS memory to disk via SilentProcessExit
  ☆435Updated 3 years ago
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆316Updated 2 months ago
• ZeroDayLab / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆215Updated 2 years ago
• xforcered / StandIn
  StandIn is a small .NET35/45 AD post-exploitation toolkit
  ☆253Updated 2 years ago
• lexfo / rpc2socks
  Post-exploit tool that enables a SOCKS tunnel via a Windows host using an extensible custom RPC proto over SMB through a named pipe.
  ☆177Updated 3 years ago
• pwn1sher / frostbyte
  FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads
  ☆370Updated 2 years ago
• ConsciousHacker / WFH
  ☆401Updated 2 years ago
• FSecureLABS / Ninjasploit
  A meterpreter extension for applying hooks to avoid windows defender memory scans
  ☆237Updated 4 years ago