JPCERTCC / CobaltStrike-Config

Related projects: ⓘ

• knight0x07 / PoC-Malware-TTPs
  PoC-Malware-TTPs
  ☆48Updated last year
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆55Updated 5 months ago
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year
• LOFL-Project / LOFLCAB
  ☆50Updated 5 months ago
• RomanRII / jenkins-strike
  Cobalt Strike profile generator using Jenkins to automate the heavy lifting
  ☆33Updated last year
• ps1337 / Lastenzug
  Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level
  ☆25Updated 2 years ago
• san3ncrypt3d / AESShellCodeEncrypter
  This is a CS project that will encrypt shell code from msfvenom using AES
  ☆22Updated 2 years ago
• persistent-security / hermes-the-messenger
  A PoC for achieving persistence via push notifications on Windows
  ☆43Updated last year
• securityandstuff / DynamicFinder
  ☆65Updated this week
• Octoberfest7 / Cohab_Processes
  A small Aggressor script to help Red Teams identify foreign processes on a host machine
  ☆79Updated last year
• VirtualAlllocEx / Taskschedule-Persistence-Download-Cradles
  Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged
  ☆86Updated 2 years ago
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆60Updated last year
• magnusstubman / tokenduplicator
  Tool to start processes as SYSTEM using token duplication
  ☆37Updated 3 years ago
• tccontre / Reg-Restore-Persistence-Mole
  a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…
  ☆49Updated last year
• ScriptIdiot / SysmonQuiet
  RDLL for Cobalt Strike beacon to silence sysmon process
  ☆85Updated 2 years ago
• 4ndr34z / prenum
  ☆23Updated last year
• hackerhouse-opensource / NoFaxGiven
  Code Execution & Persistence in NETWORK SERVICE FAX Service
  ☆30Updated 2 years ago
• knight0x07 / WinRAR-Code-Execution-Vulnerability-CVE-2023-38831
  Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)
  ☆39Updated last year
• pracsec / AmsiScanner
  A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.
  ☆56Updated 11 months ago
• ACE-Responder / Empire-C2-RCE-PoC
  RCE PoC for Empire C2 framework <5.9.3
  ☆25Updated 6 months ago
• susMdT / SharpAgent
  C# havoc implant
  ☆90Updated last year
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆25Updated 11 months ago
• mr-r3b00t / NotProxyShellHunter
  Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082
  ☆25Updated last year
• decoder-it / Troopers24
  ☆42Updated 2 months ago
• maldevel / gophish
  ☆33Updated this week
• CodeXTF2 / PyHmmm
  Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …
  ☆74Updated 10 months ago
• X-C3LL / SharpNTLMRawUnHide
  C# version of NTLMRawUnHide
  ☆71Updated last year
• mgeeky / CustomXMLPart
  A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.
  ☆37Updated 2 years ago
• Synzack / Excel-4.0-Shellcode-Generator
  ☆12Updated 4 years ago
• Octoberfest7 / lnk_generator
  Small project to facilitate creation of .lnk payloads
  ☆60Updated last year