ThunderGunExpress / CustomStager

Related projects ⓘ

Alternatives and complementary repositories for CustomStager

• bohops / IISAppPoolCreds
  Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.
  ☆13Updated 6 years ago
• jymcheong / aptc
  Automated Payload Test Controller
  ☆9Updated 7 years ago
• rvrsh3ll / UACSilentCleanup
  ☆14Updated 5 years ago
• G0ldenGunSec / wmiServSessEnum
  .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems
  ☆32Updated 4 years ago
• h0mbre / Myth
  ADD/SUB encoder for alphanumeric shellcode
  ☆9Updated 5 years ago
• 3gstudent / SCTPersistence
  Create COM Objects backed by Scripts, not DLLs
  ☆9Updated 7 years ago
• r4wd3r / ADPWN
  Useful Windows and AD tools
  ☆15Updated 2 years ago
• arunvnnk / AVbypass
  Techniques that i have used to evade anti-virus during pen tests.
  ☆13Updated 6 years ago
• bitsadmin / miscellaneous
  Random code snippets
  ☆9Updated last year
• djhohnstein / CSharpCreateThreadExample
  C# code to run PIC using CreateThread
  ☆16Updated 5 years ago
• mobdk / ExecuteShellcodeWithSyscalls
  Execute shellcode with syscalls from C# .dll
  ☆12Updated 4 years ago
• DanMcInerney / MsfWrapper
  Asynchronous MSF RPC API wrapper
  ☆20Updated last year
• curi0usJack / psfire
  simple demo of using C# & System.Management.Automation.dll to run powershell code (b64 encoded) without powershell.exe
  ☆13Updated 7 years ago
• sourcefrenchy / cryptopayload
  module for certexfil
  ☆15Updated 2 years ago
• sevagas / weaponize_process_injection_windows_SIGSEGv2_2019
  Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog
  ☆13Updated 4 years ago
• govolution / bfg
  ☆11Updated 5 years ago
• Stealthbits / RIDHijackingProofofConceptKJ
  RID Hijacking Proof of Concept script by Kevin Joyce
  ☆15Updated 6 years ago
• gquere / PulseSecure_session_hijacking
  Attacking and defending web and VPN session hijacking in Pulse Secure Connect
  ☆14Updated 5 years ago
• hvqzao / burp-token-rewrite
  Burp extension for automated handling of CSRF tokens
  ☆16Updated 6 years ago
• tevora-threat / c2_reporter
  Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials
  ☆20Updated 3 years ago
• shantanu561993 / heroku-reverse-proxy
  Spin up a reverse proxy quickly on Heroku
  ☆13Updated 3 years ago
• ThunderGunExpress / ThunderMSI
  ☆28Updated 6 years ago
• cys3c / Siofra
  DLL hijacking vulnerability scanner and PE infector tool
  ☆16Updated 7 years ago
• NotoriousRebel / ConfigPersist
  Modifies machine.config for persistence after installing signed .net assembly onto GAC
  ☆11Updated 2 years ago
• infosecn1nja / e2modrewrite
  Convert Empire profiles to Apache mod_rewrite scripts
  ☆27Updated 5 years ago
• knavesec / EyeWitnessTheFitness
  Exactly what it sounds like, which is something rad
  ☆20Updated 2 years ago
• rvrsh3ll / SharpSSDP
  SSDP Service Discovery
  ☆16Updated 5 years ago