HarmJ0y / SharpMove
.NET Project for performing Authenticated Remote Execution
☆10Updated 9 months ago
Related projects: ⓘ
- Matryoshka loader is a tool that red team operators can leverage to generate shellcode for Microsoft Office document phishing payloads.☆37Updated 3 years ago
- Create PDFs with HTML smuggling attachments that save on opening the document.☆26Updated last year
- Smuggle a file to a user's browser☆18Updated 2 years ago
- A Couple of Python Scripts Leveraging MS365's GraphAPI to Send Custom Calendar Events / Emails from Cheap O365 Accounts☆17Updated 5 months ago
- Reverse-HTTP Redirector via DigitalOcean Apps Platform☆27Updated last year
- Generate Apache mod_rewrite rules for Mythic C2 profiles☆26Updated 3 years ago
- ☆23Updated 3 years ago
- A BOF tool that can be used to collect passwords using CredUIPromptForWindowsCredentialsName.☆11Updated 2 years ago
- C# project to Reflectively load .Net assemblies in memory☆15Updated 3 months ago
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Updated 2 years ago
- This repository focuses on replicating the behavioral patterns observed in well-documented APT campaigns.☆10Updated last year
- Simple .NET loader for loading and executing Powershell payloads☆13Updated 2 years ago
- Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level☆25Updated 2 years ago
- A care package of useful bofs for red team engagments☆47Updated last year
- ☆35Updated 2 years ago
- Scripts to interact with Microsoft Graph APIs☆29Updated 2 months ago
- Microsoft365 Device Code Phishing Framework☆33Updated 3 years ago
- Citrix Phishlet☆21Updated 3 years ago
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆53Updated last year
- Items related to the RedELK workshop given at security conferences☆25Updated 11 months ago
- Weaponizing CLRvoyance for Post-Ex .NET Execution☆35Updated 3 years ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆22Updated 2 years ago
- A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.☆37Updated 2 years ago
- Generate droppers with encrypted payloads automatically.☆53Updated 2 years ago
- A BOF port of the research of @thefLinkk and @codewhitesec☆94Updated 2 years ago
- SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.☆26Updated 4 years ago
- load dumped csharp binaries as assemblies and launch them in memory☆23Updated 7 months ago
- ☆30Updated 4 years ago
- Threadless Injection Payload Toolkit☆11Updated 11 months ago
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆29Updated 2 years ago