SpiderLabs / DoHC2Links
DoHC2 allows the ExternalC2 library from Ryan Hanson (https://github.com/ryhanson/ExternalC2) to be leveraged for command and control (C2) via DNS over HTTPS (DoH).
☆451Updated 4 years ago
Alternatives and similar repositories for DoHC2
Users that are interested in DoHC2 are comparing it to the libraries listed below
Sorting:
- Easy files and payloads delivery over DNS☆423Updated last year
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆322Updated 8 years ago
- A WebSocket C2 Tool☆400Updated 7 years ago
- A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale v…☆451Updated 3 years ago
- A code demonstrating CVE-2018-0886☆265Updated 4 years ago
- Netview enumerates systems using WinAPI calls☆295Updated 3 years ago
- An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.☆308Updated 2 years ago
- DBC2 (DropboxC2) is a modular post-exploitation tool, composed of an agent running on the victim's machine, a controler, running on any m…☆299Updated 7 years ago
- ☆272Updated 2 years ago
- ntlm relay attack to Exchange Web Services☆333Updated 7 years ago
- A proof of concept for the RDP Inception Attack☆348Updated 8 years ago
- A fully functional DanderSpritz lab in 2 commands☆432Updated 6 years ago
- A Powershell client for dnscat2, an encrypted DNS command and control tool.☆413Updated last year
- APT34/OILRIG leak☆233Updated 6 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆260Updated 6 years ago
- A PowerShell example of the Windows zero day priv esc☆326Updated 6 years ago
- A script to randomize Cobalt Strike Malleable C2 profiles and reduce the chances of flagging signature-based detection controls☆447Updated 2 years ago
- SMB MiTM tool with a focus on attacking clients through file content swapping, lnk swapping, as well as compromising any data passed over…☆386Updated 6 years ago
- This tool is used to map out the network data flow to help penetration testers identify potentially valuable targets.☆245Updated 3 years ago
- A Golang implant that uses Slack as a command and control server☆463Updated 2 years ago
- Powershell C2 Server and Implants☆573Updated 5 years ago
- A script to test an RDP host for sticky keys and utilman backdoor.☆260Updated 8 years ago
- Aggressor scripts I've made for Cobalt Strike☆409Updated last year
- Provides In-memory compilation and reflective loading of C# apps for AV evasion.☆370Updated last year
- This script will generate payloads for basic intrusion detection avoidance. It utilizes publicly demonstrated techniques from several dif…☆443Updated last year
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆380Updated 5 years ago
- PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)☆325Updated 6 years ago
- Bloodhound Attack Path Automation in CobaltStrike☆318Updated 5 years ago
- This repo contains my custom scripts for Penetration Testing and Red Team Assessments. I will keep on updating this repo as and when I ge…☆352Updated 6 years ago
- morphHTA - Morphing Cobalt Strike's evil.HTA☆524Updated 2 years ago