FSecureLABS / XRulez
A command line tool for creating malicious outlook rules
☆162Updated 6 years ago
Alternatives and similar repositories for XRulez:
Users that are interested in XRulez are comparing it to the libraries listed below
- A collection of files for adding and leveraging custom properties in BloodHound.☆183Updated 5 years ago
- POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's s…☆104Updated 7 years ago
- Liniaal - A communication extension to Ruler☆97Updated 6 years ago
- In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)☆167Updated 7 years ago
- Slides and reference material from Evading Autoruns presentation at DerbyCon 7 (September 2017)☆103Updated 4 years ago
- Misc. PowerShell scripts☆117Updated 8 years ago
- ☆164Updated 9 years ago
- ObfuscatedEmpire is a fork of Empire with Invoke-Obfuscation integrated directly into it's functionality.☆228Updated 7 years ago
- Python script for analyis of the "Trust.csv" file generated by Veil PowerView. Provides graph based analysis and output.☆121Updated 4 years ago
- Generates anti-sandbox analysis HTA files without payloads☆119Updated 8 years ago
- Conveigh is a Windows PowerShell LLMNR/NBNS spoofer detection tool☆97Updated 8 years ago
- Listening Post for Throwback Implant☆110Updated 9 years ago
- PowerDNS: Powershell DNS Delivery☆212Updated 6 years ago
- IR-Tools - PowerShell tools for IR☆130Updated 7 years ago
- Open Source Office Malware Generation & Polymorphic Engine for Red Teams and QA testing☆95Updated 8 years ago
- ☆229Updated 6 years ago
- Forward local or remote tcp ports through SMB pipes.☆295Updated 4 years ago
- ☆272Updated 2 years ago
- DNSDelivery provides delivery and in memory execution of shellcode or .Net assembly using DNS requests delivery channel.☆147Updated 5 years ago
- A Powershell implementation of PrivExchange designed to run under the current user's context☆124Updated 6 years ago
- Powershell module to assist in attacking Exchange/Outlook Web Access☆181Updated 8 years ago
- A collection of PowerShell Modules for BloodHound/Empire Orchestration☆106Updated 7 years ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆168Updated 4 years ago
- Pypykatz agent implemented in .NET☆86Updated 6 years ago
- Monitors for DCSYNC and DCSHADOW attacks and create custom Windows Events for these events.☆139Updated 7 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations��☆76Updated 6 years ago
- ☆108Updated 8 years ago
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆321Updated 7 years ago
- Uses Invoke-Shellcode to execute a payload and persist on the system.☆113Updated 8 years ago
- A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics☆86Updated 7 years ago