Leo4j / ShellGen

Related projects: ⓘ

• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆23Updated 6 months ago
• Cyxow / CVE-2024-3183-POC
  POC for CVE-2024-3183 (FreeIPA Rosting)
  ☆17Updated 3 weeks ago
• whokilleddb / SOAPHound
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆32Updated 3 months ago
• decoder-it / DFSCoerce-exe-2
  DFSCoerce exe revisited version with custom authentication
  ☆34Updated 8 months ago
• Workingdaturah / BOF-Learning
  Cobalt Strike BOFS
  ☆16Updated 8 months ago
• redskal / SharpAzbelt
  .NET port of Leron Gray's azbelt tool.
  ☆26Updated 11 months ago
• ZephrFish / ADFSDump-PS
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆31Updated 4 months ago
• OtterHacker / Cerbere
  ☆45Updated last year
• p4p1 / havoc-reporter
  A havoc UI python module to help in reporting and vulnerabilities to exploit on an internal network.
  ☆11Updated 10 months ago
• Offensive-Panda / D3MPSEC
  "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…
  ☆20Updated this week
• Offensive-Panda / .NET_PROFILER_DLL_LOADING
  .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…
  ☆41Updated last month
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆54Updated 3 months ago
• snovvcrash / exfiltrate
  exfiltration/infiltration toolkit
  ☆23Updated 9 months ago
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆41Updated last year
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆26Updated 10 months ago
• CR-DMcDonald / voipire
  ☆14Updated 3 months ago
• 4ndr34z / prenum
  ☆23Updated last year
• realoriginal / ghost
  ☆27Updated this week
• n0tspam / RunspaceLoader
  Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe
  ☆13Updated 9 months ago
• ACE-Responder / Empire-C2-RCE-PoC
  RCE PoC for Empire C2 framework <5.9.3
  ☆25Updated 6 months ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB)
  ☆34Updated last month
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆25Updated 11 months ago
• JitBox / SSHniffer
  ☆35Updated 9 months ago
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆16Updated last year
• Bl4ckM1rror / PEAs
  ☆57Updated 9 months ago
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆38Updated 3 months ago
• gemini-security / GithubC2
  ☆24Updated 10 months ago
• VirtualAlllocEx / DSC_SVC_REMOTE
  This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for loc…
  ☆50Updated last year
• zimnyaa / smbsocks
  A simple rpc2socks alternative in pure Go.
  ☆23Updated 2 months ago
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆39Updated 2 months ago