SySS-Research / MAT

Related projects ⓘ

Alternatives and complementary repositories for MAT

• v1k1ngfr / fuegoshell
  Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445
  ☆40Updated 6 months ago
• sfewer-r7 / CVE-2023-27532
  Exploit for CVE-2023-27532 against Veeam Backup & Replication
  ☆102Updated last year
• WKL-Sec / Winsocky
  Winsocket for Cobalt Strike.
  ☆98Updated last year
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆113Updated 11 months ago
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆77Updated last year
• dmcxblue / SharpGhostTask
  A C# port from Invoke-GhostTask
  ☆109Updated 10 months ago
• Leo4j / SessionExec
  Execute commands in other Sessions
  ☆79Updated 3 months ago
• ewby / Mockingjay_BOF
  Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique
  ☆149Updated last year
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆42Updated 2 months ago
• c3r3br4t3 / ShadowRDP
  ☆61Updated 9 months ago
• gavz / ExplorerPersist
  Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …
  ☆67Updated last year
• REDMED-X / InjectKit
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆87Updated 9 months ago
• werdhaihai / SharpAltShellCodeExec
  Alternative Shellcode Execution Via Callbacks in C# with P/Invoke
  ☆72Updated last year
• hrtywhy / BOF-CobaltStrike
  Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.
  ☆75Updated 2 years ago
• duck-sec / CVE-2023-28252-Compiled-exe
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆52Updated 9 months ago
• rasta-mouse / SpawnWith
  ☆91Updated 8 months ago
• decoder-it / ADCSCoercePotato
  ☆207Updated 6 months ago
• susMdT / SharpAgent
  C# havoc implant
  ☆96Updated last year
• cybersectroll / SharpPersistSD
  ☆83Updated 5 months ago
• rasta-mouse / SCMUACBypass
  ☆94Updated last year
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year
• IncludeSecurity / c2-vulnerabilities
  PoCs of RCEs against open source C2 servers
  ☆45Updated last month
• laxa / SharpSecretsdump
  Secretsdump C# version only supporting local (live) operation
  ☆47Updated last year
• weaselsec / GodPotato-Aggressor-Script
  ☆86Updated 10 months ago
• cybersectroll / TrollDump
  ☆79Updated 5 months ago
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆62Updated last year
• parzel / GoSleepyCrypt
  In-memory sleep encryption and heap encryption for Go applications through a shellcode function.
  ☆39Updated 9 months ago
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆75Updated 6 months ago