R3DRUN3 / vermilion
Linux post exploitation tool for info gathering and exfiltration π§π‘π
β70Updated 2 months ago
Alternatives and similar repositories for vermilion:
Users that are interested in vermilion are comparing it to the libraries listed below
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.β82Updated last month
- Morpheus is a memory dumper that extracts lsass.exe in RAM and exfiltrates it via forged NTP packets. It uses RC4 encryption and Reed-Solβ¦β90Updated 3 weeks ago
- The tool that bypasses the firewall's Application Based Rules and lets you connect to anywhere, ANY IP, ANY PORT and ANY APPLICATION.β61Updated 8 months ago
- β58Updated 6 months ago
- RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debuggingβ183Updated last month
- Inject RDPThief into memory with PowerShell.β62Updated 3 months ago
- A Rust implementation of Internal-Monologue β retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and β¦β161Updated 4 months ago
- Automated .NET AppDomain hijack payload generationβ123Updated 2 months ago
- Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromiseβ95Updated last year
- β38Updated this week
- MailSecOps is an email and mail gateway security testing tool. With this script, you can perform mail spoofing, relay tests and security β¦β54Updated 5 months ago
- A powerful, modular, lightweight and efficient command & control framework written in Nim.β77Updated this week
- Repo for all my exploits/PoCsβ50Updated 2 months ago
- β69Updated last year
- β51Updated 2 months ago
- Our Tips&Tricksβ115Updated 2 months ago
- β83Updated 2 months ago
- Smart keylogging capability to steal SSH Credentials including password & Private Keyβ125Updated last month
- An interactive shell to spoof some LOLBins command lineβ184Updated last year
- ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatinβ¦β109Updated 3 months ago
- .NET Post-Exploitation Utility for Abusing Explicit Certificate Mappings in ADCSβ140Updated 2 months ago
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download optionsβ136Updated last month
- this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)β82Updated last year
- Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)β87Updated 10 months ago
- CVE-2024-4879 - Jelly Template Injection Vulnerability in ServiceNowβ23Updated 9 months ago
- β55Updated 5 months ago
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.β80Updated 7 months ago
- APT Emulation tool to exfiltrate sensitive .docx, .pptx, .xlsx, .pdf filesβ70Updated 3 weeks ago
- A GUI wrapper inside of Havoc to interact with bloodhound CEβ71Updated last year
- β83Updated 3 months ago