DarkSpaceSecurity / DocExLinks
APT Emulation tool to exfiltrate sensitive .docx, .pptx, .xlsx, .pdf files
☆95Updated 9 months ago
Alternatives and similar repositories for DocEx
Users that are interested in DocEx are comparing it to the libraries listed below
Sorting:
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆86Updated 10 months ago
- Enumerate active EDR's on the system☆148Updated 3 months ago
- Persist like a Dodder☆67Updated 7 months ago
- ☆95Updated 5 months ago
- Linux post exploitation tool for info gathering and exfiltration 🐧📡💀☆89Updated 2 months ago
- Swiss Army Knife for payload encryption, obfuscation, and conversion to byte arrays – all in a single command (14 output formats supporte…☆208Updated 3 months ago
- AutoPwnKey is a red teaming framework and testing tool using AutoHotKey (AHK), which at the time of creation proves to be quite evasive. …☆109Updated 5 months ago
- BeaconatorC2 is a framework for red teaming and adversarial emulation, providing a full-featured management interface, along with a catal…☆91Updated last week
- Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise☆103Updated 2 years ago
- PoC that downloads an executable from a public SSL certificate☆135Updated 5 months ago
- ☆62Updated last month
- ☆163Updated last month
- Utilizng an MCP Server to communicate with your C2☆86Updated 8 months ago
- ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets …☆132Updated 2 weeks ago
- Permanently disable EDRs as local admin☆124Updated 3 weeks ago
- PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…☆152Updated last year
- Go collector for adding Ansible WorX and Ansible Tower attack paths to BloodHound with OpenGraph☆62Updated this week
- ☆152Updated 3 months ago
- Convert your shellcode into an ASCII string☆124Updated 6 months ago
- Remote DLL Injection with Timer-based Shellcode Execution☆152Updated 5 months ago
- An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…☆166Updated last year
- Python alternative to Mimikatz lsadump::dcshadow☆155Updated 6 months ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆149Updated last year
- A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office3…☆165Updated 5 months ago
- Tool to extract username and password of current user from PanGPA in plaintext☆88Updated last year
- The different ways to dump lsass☆204Updated 5 months ago
- Founding is a generator that will create a loader encrypted or obfuscated with different execution types☆111Updated 4 months ago
- AutoRMM is a collection of scripts and instructions we are organizing, to test delivery mechanisms for RMM and screen sharing tools, alo…☆91Updated 5 months ago
- This tool exploits Golden DMSA attack against delegated Managed Service Accounts.☆88Updated 6 months ago
- Windows Administrator level Implant.☆50Updated last year