KINGSABRI / ServerlessRedirector
Serverless Redirector in various cloud vendor for red team
☆69Updated last year
Related projects: ⓘ
- Find .net assemblies locally☆85Updated last year
- Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell pro…☆84Updated last year
- Slide decks and/or materials from conference presentations☆55Updated last year
- ☆135Updated 2 years ago
- ☆83Updated 2 years ago
- Living Off the Foreign Land setup scripts☆61Updated last month
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆109Updated 11 months ago
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆84Updated last year
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆53Updated 2 years ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆71Updated 5 months ago
- A C# tool to output crackable DPAPI hashes from user MasterKeys☆129Updated this week
- ☆105Updated 3 years ago
- Disconnected GPO Editor - A Group Policy Manager launcher to allow editing of domain GPOs from non-domain joined machines☆55Updated 2 weeks ago
- Lateral Movement via the .NET Profiler☆74Updated 3 months ago
- ☆110Updated last year
- Tool for playing with Windows Access Token manipulation.☆50Updated last year
- C# havoc implant☆90Updated last year
- ☆53Updated 5 months ago
- Unchain AMSI by patching the provider’s unmonitored memory space☆87Updated last year
- ☆69Updated 10 months ago
- ☆101Updated 4 months ago
- Bypass AMSI By Dividing files into multiple smaller files☆45Updated last year
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆74Updated 10 months ago
- WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"☆114Updated 2 months ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆85Updated 2 months ago
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆46Updated 3 months ago
- ☆87Updated 2 years ago
- Get Fine Grained Password Policy☆62Updated 4 months ago
- ☆65Updated last month
- ☆61Updated 2 years ago