DarkSpaceSecurity / DocExLinks
APT Emulation tool to exfiltrate sensitive .docx, .pptx, .xlsx, .pdf files
☆94Updated 7 months ago
Alternatives and similar repositories for DocEx
Users that are interested in DocEx are comparing it to the libraries listed below
Sorting:
- Persist like a Dodder☆66Updated 5 months ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆87Updated 8 months ago
- PoC that downloads an executable from a public SSL certificate☆131Updated 3 months ago
- Python alternative to Mimikatz lsadump::dcshadow☆155Updated 4 months ago
- BeaconatorC2 is a framework for red teaming and adversarial emulation, providing a full-featured management interface, along with a catal…☆85Updated last week
- Enumerate active EDR's on the system☆144Updated last month
- ☆88Updated 3 months ago
- Swiss Army Knife for payload encryption, obfuscation, and conversion to byte arrays – all in a single command (14 output formats supporte…☆195Updated last month
- ☆164Updated 6 months ago
- ☆144Updated last month
- Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise☆101Updated last year
- PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…☆154Updated last year
- AutoPwnKey is a red teaming framework and testing tool using AutoHotKey (AHK), which at the time of creation proves to be quite evasive. …☆108Updated 3 months ago
- ☆62Updated last year
- Permanently disable EDRs as local admin☆121Updated last month
- Remote DLL Injection with Timer-based Shellcode Execution☆151Updated 3 months ago
- Convert your shellcode into an ASCII string☆124Updated 4 months ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆148Updated last year
- Utilizng an MCP Server to communicate with your C2☆85Updated 6 months ago
- Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…☆104Updated 3 weeks ago
- Go collector for adding Ansible WorX and Ansible Tower attack paths to BloodHound with OpenGraph☆61Updated this week
- A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office3…☆150Updated 3 months ago
- Addon for BHCE☆53Updated 7 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆179Updated 5 months ago
- Founding is a generator that will create a loader encrypted or obfuscated with different execution types☆95Updated 2 months ago
- SilentButDeadly is a network communication blocker specifically designed to neutralize EDR/AV software by preventing their cloud connecti…☆236Updated 2 weeks ago
- Linux post exploitation tool for info gathering and exfiltration 🐧📡💀☆89Updated this week
- Source code and examples for PassiveAggression☆64Updated last year
- A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …☆136Updated 2 weeks ago
- ☆150Updated 6 months ago