IncludeSecurity / c2-vulnerabilitiesLinks
PoCs of RCEs against open source C2 servers
☆84Updated 8 months ago
Alternatives and similar repositories for c2-vulnerabilities
Users that are interested in c2-vulnerabilities are comparing it to the libraries listed below
Sorting:
- To audit the security of read-only domain controllers☆117Updated last year
- Leverage WindowsApp createdump tool to obtain an lsass dump☆150Updated 9 months ago
- Citrix Virtual Apps and Desktops (XEN) Unauthenticated RCE☆194Updated 7 months ago
- Port of Cobalt Strike's Process Inject Kit☆180Updated 6 months ago
- Create Anti-Copy DRM Malware☆58Updated 10 months ago
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆84Updated 3 years ago
- ☆226Updated last year
- Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE☆206Updated last year
- CVE-2024-41570: Havoc C2 0.7 Teamserver SSRF exploit☆75Updated 9 months ago
- CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability☆141Updated 5 months ago
- This repository contains a proof-of-concept exploit written in C++ that demonstrates the exploitation of a vulnerability affecting the Wi…☆77Updated last year
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆140Updated 2 months ago
- ApexLdr is a DLL Payload Loader written in C☆110Updated 11 months ago
- Lateral Movement☆124Updated last year
- Evasive Golang Loader☆131Updated 10 months ago
- Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege☆206Updated last year
- Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning☆129Updated last month
- TeamServer and Client of Exploration Command and Control Framework☆131Updated 3 weeks ago
- Windows Persistence IT-Security☆101Updated 3 months ago
- Library of BOFs to interact with SQL servers☆182Updated 2 months ago
- The Official Sliver Armory☆109Updated 2 months ago
- Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.☆241Updated last year
- CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking☆269Updated 2 years ago
- Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445☆54Updated last year
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆115Updated 2 months ago
- Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique☆157Updated last year
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆201Updated 8 months ago
- Robust Cobalt Strike shellcode loader with multiple advanced evasion features☆163Updated 2 months ago
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆111Updated 2 years ago
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆148Updated last year