MHaggis / NEBULAView external linksLinks
Interactive PowerShell framework for testing WMI, COM, LOLBAS, and persistence techniques
☆94Dec 28, 2025Updated last month
Alternatives and similar repositories for NEBULA
Users that are interested in NEBULA are comparing it to the libraries listed below
Sorting:
- A Windows tool that converts LDIF files to BloodHound CE☆25Dec 20, 2025Updated last month
- A stager and implant that executes remote Web Assembly☆33Feb 4, 2026Updated last week
- template for developing custom C2 channels for Cobalt Strike using IAT hooks applied by a reflective loader.☆101Jan 10, 2026Updated last month
- Cobalt Strike UDC2 implementation that provides an Slack C2 channel☆60Jan 5, 2026Updated last month
- A PowerShell variant of the amazing patch_review.py by kevthehermit☆185Oct 23, 2025Updated 3 months ago
- CVE-2025-59501 POC code☆25Nov 20, 2025Updated 2 months ago
- Agent for AdaptixC2 with focus in evasion, capability and malleable.☆142Updated this week
- Modified version of PEAS client for offensive operations☆50Nov 1, 2025Updated 3 months ago
- Golang Automation Framework for Cobalt Strike using the Rest API☆55Dec 4, 2025Updated 2 months ago
- Ludus range for the Constructing Defense Lab☆74Nov 10, 2025Updated 3 months ago
- Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover☆85Oct 20, 2025Updated 3 months ago
- ☆28Updated this week
- Baseline a Windows System against LOLBAS☆70Feb 2, 2026Updated 2 weeks ago
- Cobalt Strike Aggressor Script for identifying security products on Windows hosts — six enumeration methods rated by noise level, from si…☆34Feb 6, 2026Updated last week
- open source port/reimplementation of the Cobalt Strike BOF Loader as is☆64Feb 3, 2026Updated 2 weeks ago
- sideloading PoC using onedrive.exe & version.dll☆91Oct 30, 2025Updated 3 months ago
- Stage 0☆169Dec 18, 2024Updated last year
- Step-by-step documentation on how to decrypt SCCM database secrets offline☆50Oct 20, 2025Updated 3 months ago
- A beginner-friendly collection of Rust notes focused on Red Team Tooling • Malware Development • Systems Programming • Rust Fundamentals☆58Nov 24, 2025Updated 2 months ago
- C++ tool and library for converting .bin files to shellcode in multiple output formats.☆33Aug 18, 2025Updated 5 months ago
- A BOF that's a BOF Loader and more☆196Jan 17, 2026Updated 3 weeks ago
- Folder Or File Delete to Get System Shell on Current Session Desktop☆47Jan 14, 2025Updated last year
- AppLocker-Based EDR Neutralization☆302Dec 19, 2025Updated last month
- Universal exploitation tool for CVE-2025-33073 targeting Windows Domain Controllers with DNSAdmins privileges and WinRM enabled.☆65Nov 14, 2025Updated 3 months ago
- Shellcode and In-PowerShell solution for patching AMSI via Page Guard Exceptions☆63Nov 15, 2025Updated 3 months ago
- ☆22Nov 22, 2025Updated 2 months ago
- poc for cve-2025-53772☆46Dec 10, 2025Updated 2 months ago
- Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…☆164Oct 21, 2025Updated 3 months ago
- Passive JavaScript reconnaissance for penetration testers — bridging Burp Suite traffic into structured, AST-based analysis in VSCode.☆35Feb 5, 2026Updated last week
- WinRemoteEnum is a module-based collection of operations achievable by a low-privileged domain user.☆13Oct 24, 2022Updated 3 years ago
- 🛠️ Explore custom C2 TTPs with Aether-C2-Framework, focusing on lightweight Rust implants and stealthy transport stacks to reduce forens…☆18Updated this week
- ☆20Sep 6, 2025Updated 5 months ago
- A basic python based tool for domain ℹ️ information gathering. I am working 💻 on collecting information related to domain whois, history…☆12Jan 11, 2026Updated last month
- POCs for CVE-2025-50154 and CVE-2025-59214, zero day vulnerabilities on windows file explorer disclosing NTLMv2-SSP without user interact…☆52Oct 16, 2025Updated 4 months ago
- Fairy Law - Compromise or disable EDR security solutions☆68Dec 1, 2025Updated 2 months ago
- ☆59Dec 10, 2025Updated 2 months ago
- UDC2 implementation that provides an ICMP C2 channel☆115Nov 24, 2025Updated 2 months ago
- Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does☆94Jul 3, 2025Updated 7 months ago
- Static Encrypt is an crate that encrypts string literals at compile time and only decrypted at runtime when needed.☆56Jan 17, 2026Updated last month