SpiderLabs / DoHC2Links
DoHC2 allows the ExternalC2 library from Ryan Hanson (https://github.com/ryhanson/ExternalC2) to be leveraged for command and control (C2) via DNS over HTTPS (DoH).
☆446Updated 5 years ago
Alternatives and similar repositories for DoHC2
Users that are interested in DoHC2 are comparing it to the libraries listed below
Sorting:
- ☆273Updated 3 years ago
- A WebSocket C2 Tool☆409Updated 8 years ago
- An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.☆306Updated 3 years ago
- A script to test an RDP host for sticky keys and utilman backdoor.☆261Updated 9 years ago
- A script to randomize Cobalt Strike Malleable C2 profiles and reduce the chances of flagging signature-based detection controls☆449Updated 3 years ago
- ☆309Updated 6 years ago
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆321Updated 8 years ago
- Easy files and payloads delivery over DNS☆424Updated last year
- DBC2 (DropboxC2) is a modular post-exploitation tool, composed of an agent running on the victim's machine, a controler, running on any m…☆305Updated 8 years ago
- A code demonstrating CVE-2018-0886☆268Updated 5 years ago
- A library for integrating communication channels with the Cobalt Strike External C2 server☆285Updated 8 years ago
- Use powershell to list the RDP Connections History of logged-in users or all users☆264Updated 4 years ago
- Aggressor scripts I've made for Cobalt Strike☆411Updated 2 years ago
- morphHTA - Morphing Cobalt Strike's evil.HTA☆526Updated 2 years ago
- PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)☆327Updated 6 years ago
- RedSails is a Python based post-exploitation project aimed at bypassing host based security monitoring and logging. DerbyCon 2017 Talk: h…☆307Updated 8 years ago
- Netview enumerates systems using WinAPI calls☆298Updated 3 years ago
- A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale v…☆450Updated 3 years ago
- The Old BloodHound C# Ingestor (Deprecated)☆511Updated 3 years ago
- Powershell C2 Server and Implants☆573Updated 6 years ago
- Search for categorized domain☆451Updated 6 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆1,011Updated 7 years ago
- FCL (Fileless Command Lines) - Known command lines of fileless malicious executions☆476Updated 4 years ago
- Bloodhound Attack Path Automation in CobaltStrike☆322Updated 5 years ago
- Provides In-memory compilation and reflective loading of C# apps for AV evasion.☆370Updated last year
- DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.☆254Updated 7 years ago
- ntlm relay attack to Exchange Web Services☆334Updated 7 years ago
- ☆524Updated 3 years ago
- A PoC WMI backdoor presented at Black Hat 2015☆276Updated 10 years ago
- SMB MiTM tool with a focus on attacking clients through file content swapping, lnk swapping, as well as compromising any data passed over…☆383Updated 7 years ago