SpiderLabs / DoHC2
DoHC2 allows the ExternalC2 library from Ryan Hanson (https://github.com/ryhanson/ExternalC2) to be leveraged for command and control (C2) via DNS over HTTPS (DoH).
☆443Updated 4 years ago
Alternatives and similar repositories for DoHC2:
Users that are interested in DoHC2 are comparing it to the libraries listed below
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆321Updated 7 years ago
- Netview enumerates systems using WinAPI calls☆295Updated 3 years ago
- Not PowerShell☆446Updated 8 years ago
- A script to randomize Cobalt Strike Malleable C2 profiles and reduce the chances of flagging signature-based detection controls☆444Updated 2 years ago
- ☆272Updated 2 years ago
- Search for categorized domain☆445Updated 6 years ago
- Provides In-memory compilation and reflective loading of C# apps for AV evasion.☆369Updated last year
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆378Updated 5 years ago
- An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.☆304Updated 2 years ago
- A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale v…☆449Updated 2 years ago
- This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.☆384Updated 10 months ago
- A fully functional DanderSpritz lab in 2 commands☆426Updated 5 years ago
- ☆307Updated 6 years ago
- The Old BloodHound C# Ingestor (Deprecated)☆513Updated 2 years ago
- Powershell C2 Server and Implants☆573Updated 5 years ago
- Bloodhound Attack Path Automation in CobaltStrike☆316Updated 5 years ago
- GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.☆633Updated 7 years ago
- PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)☆325Updated 6 years ago
- ntlm relay attack to Exchange Web Services☆331Updated 7 years ago
- A Powershell client for dnscat2, an encrypted DNS command and control tool.☆404Updated last year
- A PowerShell example of the Windows zero day priv esc☆326Updated 6 years ago
- DBC2 (DropboxC2) is a modular post-exploitation tool, composed of an agent running on the victim's machine, a controler, running on any m…☆295Updated 7 years ago
- FCL (Fileless Command Lines) - Known command lines of fileless malicious executions☆467Updated 4 years ago
- Tater is a PowerShell implementation of the Hot Potato Windows Privilege Escalation exploit from @breenmachine and @foxglovesec☆450Updated 9 years ago
- Automated deployment of Windows and Active Directory test lab networks. Useful for red and blue teams.☆488Updated 6 years ago
- Some PowerShell Stuff☆281Updated 2 years ago
- A PoC WMI backdoor presented at Black Hat 2015☆273Updated 9 years ago
- PowerShell Remote Download Cradle Generator & Obfuscator☆834Updated 7 years ago
- Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques …☆281Updated 7 years ago
- APT34/OILRIG leak☆231Updated 6 years ago