Octoberfest7 / OSEP-Tools
β241Updated 2 years ago
Alternatives and similar repositories for OSEP-Tools:
Users that are interested in OSEP-Tools are comparing it to the libraries listed below
- PowerShell Constrained Language Mode Bypassβ258Updated 4 years ago
- π Orange Tsai EventViewer RCEβ184Updated 2 years ago
- Materials for the workshop "Red Team Ops: Havoc 101"β366Updated 5 months ago
- From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controllerβ417Updated 2 months ago
- A collection of code snippets built to assist with breaking chains.β117Updated 10 months ago
- Creating a repository with all public Beacon Object Files (BoFs)β464Updated last year
- Collection of remote authentication triggers in C#β475Updated 10 months ago
- Python tool to Check running WebClient services on multiple targets based on @leechristensenβ269Updated 3 years ago
- Local privilege escalation from SeImpersonatePrivilege using EfsRpc.β310Updated 2 years ago
- Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannelβ604Updated 8 months ago
- Lists who can read any gMSA password blobs and parses them if the current user has access.β264Updated last year
- Collection of some of my own tools with other great open source tools out there packaged into a powershell moduleβ143Updated 2 years ago
- Partial python implementation of SharpGPOAbuseβ404Updated last year
- Custom Queries - Brought Up to BH4.1 syntaxβ244Updated 4 months ago
- AD ACL abuseβ286Updated this week
- Kerberoast with ACL abuse capabilitiesβ420Updated 3 months ago
- A marriage between Octoberfest7/OSEP-Tools and chvancooten/OSEP-Code-Snippets with some improvements/additionsβ53Updated 2 months ago
- Bypassing Kerberoast Detections with Modified KDC Options and Encryption Typesβ378Updated 2 years ago
- BOF for Kerberos abuse (an implementation of some important features of the Rubeus).β438Updated last month
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR β¦β257Updated 2 years ago
- β364Updated 3 years ago
- Collection of Beacon Object Files (BOF) for Cobalt Strikeβ570Updated 7 months ago
- Ad hoc collection of Red Teaming & Active Directory tooling.β190Updated last year
- Useful C2 techniques and cheatsheets learned from engagementsβ468Updated this week
- Attempt at Obfuscated version of SharpCollectionβ205Updated last month
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinelβ320Updated last year
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleableβ¦β202Updated 2 months ago
- Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.β357Updated last year
- Simple script to extract useful informations from the combo BloodHound + Neo4jβ228Updated last year
- Bypass AMSI by patching AmsiScanBufferβ258Updated 3 years ago