G0ldenGunSec/backdoorLnkMacroStagerObfuscated external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

G0ldenGunSec/backdoorLnkMacroStagerObfuscated

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/G0ldenGunSec/backdoorLnkMacroStagerObfuscated)

Close

G0ldenGunSec / backdoorLnkMacroStagerObfuscatedView on GitHubMore

• External links
• Readme badge

Obfuscated Powershell Empire 2.x stager that allows for creation of a macro which uses VBA to backdoor .lnk files on the system. This is done to obtain a shell via follow-up user interaction natively through powershell, in order to evade tools that monitor process execution. Backdoors are self-cleaning on execution.

☆18Nov 8, 2017Updated 8 years ago

Alternatives and similar repositories for backdoorLnkMacroStagerObfuscated

Users that are interested in backdoorLnkMacroStagerObfuscated are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• rvrsh3ll / UACSilentCleanup

  View on GitHub
  ☆14Sep 22, 2019Updated 6 years ago
• guobaoyou / vul_environment

  View on GitHub
  一些漏洞的环境/利用工具/分析
  ☆10Jul 24, 2020Updated 5 years ago
• yuxiaokui / onethink_rce

  View on GitHub
  ☆11Oct 23, 2019Updated 6 years ago
• ThunderGunExpress / CustomStager

  View on GitHub
  ☆17Jul 26, 2018Updated 7 years ago
• lillypad / swamp-rat

  View on GitHub
  A Linux RAT in C
  ☆33Oct 29, 2018Updated 7 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• checkymander / TokenContextManipulation

  View on GitHub
  Code that can be used to create/steal/manipulate token contexts in a program. Can be implemented into other C# projects.
  ☆12Jan 3, 2019Updated 7 years ago
• byt3bl33d3r / log4j-scan

  View on GitHub
  A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
  ☆13Dec 13, 2021Updated 4 years ago
• skelsec / socksohttp

  View on GitHub
  Socks5 server over Websockets
  ☆40Oct 17, 2018Updated 7 years ago
• NYAN-x-CAT / OSEP-Code-Snippets

  View on GitHub
  A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
  ☆10Aug 2, 2021Updated 4 years ago
• basharbachir / HostingCLR-Bypass-AMSI-Windows-Defender

  View on GitHub
  ☆11Apr 23, 2019Updated 6 years ago
• butterflyhack / CVE-2019-10207

  View on GitHub
  PoC for CVE-2019-10207
  ☆20Mar 27, 2022Updated 4 years ago
• ThunderGunExpress / Reflective_PSExec

  View on GitHub
  ☆45Jul 12, 2018Updated 7 years ago
• ThunderGunExpress / UAC-TokenDuplication

  View on GitHub
  ☆36Nov 4, 2017Updated 8 years ago
• gurbanli / CobaltStrikeWindowsDefenderBypass

  View on GitHub
  Windows Defender Bypass for Cobalt Strike v4.0 Powershell Payload
  ☆10Aug 29, 2020Updated 5 years ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• jnqpblc / Misc-PowerShell

  View on GitHub
  Miscellaneous PowerShell scripts for red team activities
  ☆16Jan 15, 2026Updated 2 months ago
• TheWover / donut-demos

  View on GitHub
  Demos of Donut used in conferences, etc. Mostly for my use, but free for others to use as a reference.
  ☆31Nov 6, 2019Updated 6 years ago
• rogue-kdc / CVE-2019-1253

  View on GitHub
  ☆50Sep 11, 2019Updated 6 years ago
• jnqpblc / Misc-CSharp

  View on GitHub
  Miscellaneous C-Sharp projects for red team activities
  ☆24Aug 12, 2022Updated 3 years ago
• rvrsh3ll / Sharp-Suite

  View on GitHub
  My musings with C#
  ☆28Dec 23, 2022Updated 3 years ago
• lkys37en / Lab-Automation

  View on GitHub
  Packer and vagrant scripts to automate building Windows and Linux machines on vCenter
  ☆17Jul 7, 2019Updated 6 years ago
• kypvas / LDIFToBloodHound

  View on GitHub
  A Windows tool that converts LDIF files to BloodHound CE
  ☆31Dec 20, 2025Updated 3 months ago
• fashionproof / SearchOpenFileShares

  View on GitHub
  Searches open files shares for password files, database backups, etc. Extend as you see fit
  ☆29Dec 13, 2019Updated 6 years ago
• anthemtotheego / SharpCradle

  View on GitHub
  ☆281Dec 30, 2020Updated 5 years ago
• NordVPN Threat Protection Pro™ • Ad
  Take your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
• decay88 / Tengri_Shellcode_Loader

  View on GitHub
  Encrypted Shellcode Loader Generator
  ☆22Jan 29, 2019Updated 7 years ago
• mdsecactivebreach / WMIPersistence

  View on GitHub
  WMI Event Subscription Persistence in C#
  ☆112May 29, 2019Updated 6 years ago
• rvrsh3ll / MSSQLUDPScanner

  View on GitHub
  Discover MSSQL Instances via UDP Scanning
  ☆25Dec 17, 2018Updated 7 years ago
• ambray / ProcessHollowing

  View on GitHub
  Simple Process Hollowing in C#
  ☆68Oct 23, 2017Updated 8 years ago
• G0ldenGunSec / PowerPriv

  View on GitHub
  A Powershell implementation of PrivExchange designed to run under the current user's context
  ☆125Jan 31, 2019Updated 7 years ago
• mhaskar / CVE-2019-20224

  View on GitHub
  The offical exploit for Pandora v7.0NG Post-auth Remote Code Execution CVE-2019-20224
  ☆14Jan 10, 2020Updated 6 years ago
• Teach2Breach / nt_unhooker

  View on GitHub
  demo unhooking functions in ntdll
  ☆28Jul 15, 2025Updated 8 months ago
• 0xbug / CVE-2019-8451

  View on GitHub
  https://jira.atlassian.com/browse/JRASERVER-69793
  ☆10Sep 16, 2019Updated 6 years ago
• n1xbyte / donutCS

  View on GitHub
  dem sharp donuts
  ☆203Sep 11, 2022Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• JkMaFlLi / xorInject

  View on GitHub
  ☆21Nov 6, 2024Updated last year
• rasta-mouse / McAfeeForOutlook

  View on GitHub
  Beef hook OWA / Outlook
  ☆12Mar 27, 2019Updated 7 years ago
• rasta-mouse / Aggressor-Script

  View on GitHub
  Collection of Aggressor Scripts for Cobalt Strike
  ☆172Aug 8, 2018Updated 7 years ago
• QAX-A-Team / CVE-2018-20250

  View on GitHub
  010 Editor template for ACE archive format & CVE-2018-2025[0-3]
  ☆26Feb 22, 2019Updated 7 years ago
• JameelNabbo / Linux-advanced-privilege-escalation

  View on GitHub
  ☆12Jun 8, 2018Updated 7 years ago
• ThunderGunExpress / ThunderMSI

  View on GitHub
  ☆28Dec 28, 2017Updated 8 years ago
• ka7ana / CVE-2023-36025

  View on GitHub
  Quick test for CVE-2023-26025 behaviours
  ☆13Nov 29, 2023Updated 2 years ago