Tylous / IvyLinks
Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode.
☆24Updated 2 years ago
Alternatives and similar repositories for Ivy
Users that are interested in Ivy are comparing it to the libraries listed below
Sorting:
- ☆61Updated 2 years ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆77Updated 3 years ago
- A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.☆40Updated 3 years ago
- Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL☆23Updated 3 years ago
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆90Updated 3 years ago
- These are the slide decks and source code for Brute Ratel Seminar conducted on 24th August 2023. The youtube video for the seminar can be…☆22Updated 2 years ago
- malleable profile generator GUI for Havoc☆55Updated 2 years ago
- Python module for running BOFs☆79Updated 2 months ago
- Sniffing files generator☆61Updated 11 months ago
- An interactive TUI tool to create Brute Ratel C4 profiles based on BURP browsing data.☆31Updated 8 months ago
- Bunch of BOF files☆38Updated 7 months ago
- A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.☆67Updated 2 years ago
- C# havoc implant☆100Updated 3 years ago
- Run Cobalt Strike BOFs in Brute Ratel C4!☆86Updated 9 months ago
- ☆39Updated 10 months ago
- Extract registry and NTDS secrets from local or remote disk images☆45Updated 10 months ago
- Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell pro…☆86Updated 2 years ago
- A care package of useful bofs for red team engagments☆55Updated last year
- ☆38Updated 11 months ago
- Small project to facilitate creation of .lnk payloads☆76Updated 3 years ago
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆86Updated 2 years ago
- A small Aggressor script to help Red Teams identify foreign processes on a host machine☆84Updated 3 years ago
- ☆59Updated last year
- a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab☆64Updated last year
- Creation and removal of Defender path exclusions and exceptions in C#.☆33Updated 2 years ago
- ☆22Updated 8 months ago
- Lateral Movement via the .NET Profiler☆100Updated last year
- GhostLoader - AppDomainManager - Injection - 攻壳机动队☆53Updated 5 years ago
- ☆51Updated 7 months ago
- Click Once + App Domain☆64Updated 2 years ago