Nariod / laz-y
Automating payload generation for OSEP labs and exam.
☆34Updated 2 years ago
Alternatives and similar repositories for laz-y:
Users that are interested in laz-y are comparing it to the libraries listed below
- this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…☆84Updated 2 years ago
- Read the contents of MS Word Documents using Cobalt Strike's Execute-Assembly☆117Updated 3 months ago
- ☆27Updated last year
- ☆138Updated 2 years ago
- A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket☆53Updated 4 years ago
- Secretsdump C# version only supporting local (live) operation☆47Updated last year
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆53Updated 2 years ago
- Cobalt Strike BOF for quser.exe implementation using Windows API☆83Updated last year
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆88Updated 2 years ago
- ☆61Updated 2 years ago
- .NET implementation of Cobalt Strike's External C2 Spec☆84Updated 3 years ago
- SLib is a sandbox evasion library that implements some of the checks from https://evasions.checkpoint.com in C#☆63Updated last year
- Unchain AMSI by patching the provider’s unmonitored memory space☆88Updated 2 years ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 2 years ago
- Golng version of SharpDump that can be used to extract LSASS or any other proces. Provides token elevation prior to creating dump of high…☆21Updated 4 years ago
- A third-party Gopher Assassin for the Havoc Framework.☆45Updated last year
- A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally …☆83Updated 2 years ago
- AutoStart teamserver and listeners with services☆70Updated 3 years ago
- ☆89Updated 2 years ago
- Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR☆98Updated 3 years ago
- C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD…☆36Updated last year
- C# havoc implant☆97Updated last year
- Active Directory certificate abuse.☆37Updated 2 years ago
- ☆35Updated 2 years ago
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆79Updated last year
- A BOF port of the research of @thefLinkk and @codewhitesec☆95Updated 3 years ago
- ☆44Updated 2 years ago
- Bypass AMSI via PowerShell by splitting a file into multiple chunks☆49Updated 3 years ago
- Beacon Object File allowing creation of Beacons in different sessions.☆78Updated 2 years ago
- A faithful transposition of the key features/functionality of @itm4n's PPLDump project as a BOF.☆137Updated 3 years ago