RedSiege / AutoFunktLinks
Python script for automating the creation of serverless cloud redirectors from Cobalt Strike malleable C2 profiles
☆197Updated 11 months ago
Alternatives and similar repositories for AutoFunkt
Users that are interested in AutoFunkt are comparing it to the libraries listed below
Sorting:
- ☆81Updated 9 months ago
- ACL abuse swiss-knife☆123Updated 2 years ago
- Set of python scripts which perform different ways of command execution via WMI protocol.☆159Updated last year
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆256Updated 2 years ago
- Use ESC1 to perform a makeshift DCSync and dump hashes☆209Updated last year
- It's easy as cake to dump your secrets☆49Updated last year
- ☆218Updated last year
- A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.☆129Updated last year
- A collection of Cobalt Strike Aggressor scripts.☆96Updated 3 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆231Updated 2 weeks ago
- Lateral Movement☆125Updated last year
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆200Updated 7 months ago
- PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.☆413Updated 11 months ago
- ☆226Updated last year
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆306Updated 6 months ago
- An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are a…☆135Updated 2 years ago
- Attempt at Obfuscated version of SharpCollection☆216Updated last week
- PoC to coerce authentication from Windows hosts using MS-WSP☆239Updated last year
- Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS☆184Updated 2 years ago
- Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.☆301Updated 2 years ago
- A command-line tool for reconnaissance and targeted write operations on Confluence and Jira instances.☆257Updated last year
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆177Updated 2 years ago
- My implementation of the GIUDA project in C++☆183Updated last year
- Havoc C2 profile generator☆89Updated 7 months ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆114Updated 2 years ago
- Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.☆112Updated 3 years ago
- Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus☆229Updated 3 years ago
- The Official Sliver Armory☆109Updated last month
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆147Updated last year
- ☆158Updated last year