SpiderLabs / SCShell
Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
☆106Updated 5 years ago
Alternatives and similar repositories for SCShell:
Users that are interested in SCShell are comparing it to the libraries listed below
- lateral movement techniques that can be used during red team exercises☆269Updated 5 years ago
- An Insider Threat Toolkit☆149Updated 6 years ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆168Updated 4 years ago
- Powershell module to get the NetNTLMv2 hash of the current user☆93Updated 2 years ago
- A Powershell implementation of PrivExchange designed to run under the current user's context☆124Updated 6 years ago
- A HTA shell to assist with breakout assessments.☆112Updated 3 years ago
- Collection of awesome Cobalt Strike Aggressor Scripts. All credit due to the authors☆151Updated 6 years ago
- ☆162Updated 2 years ago
- BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET☆145Updated 5 years ago
- Tool that automates Active Directory enumeration☆89Updated 3 years ago
- A tool to create obfuscated HTA script.☆176Updated 3 years ago
- Presentation material presented by Outflank team members at public events.☆183Updated 2 months ago
- Slides from my talk in "Hackinparis" 2019 edition☆91Updated 5 years ago
- Resources for our Active Directory security workshops☆140Updated 3 years ago
- ☆124Updated 4 years ago
- GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects☆247Updated 4 years ago
- ☆78Updated 8 years ago
- A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…☆88Updated 5 years ago
- SPF are not as strong as you may think. Red Team tool to send email on behalf of your target corp☆136Updated 3 years ago
- C# Targeted Attack Reconnissance Tools☆122Updated 4 years ago
- Python api for usage with cobalt strike's External C2 specification☆229Updated last year
- Check if MS-RPRN is remotely available with powershell/c#☆172Updated 6 years ago
- Parse NTLM challenge messages over HTTP and SMB☆143Updated 2 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆75Updated 6 years ago
- Constrained Language Mode + AMSI bypass all in one☆156Updated 5 years ago
- DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. It will automatically g…☆99Updated 2 years ago
- A collection of files for adding and leveraging custom properties in BloodHound.☆182Updated 5 years ago
- Python script for analyis of the "Trust.csv" file generated by Veil PowerView. Provides graph based analysis and output.☆118Updated 4 years ago
- Pypykatz agent implemented in .NET☆86Updated 5 years ago
- A C# implementation of PrivExchange by @_dirkjan.☆158Updated 5 years ago