ZephrFish / SandboxSpy
Code for profiling sandboxes - Initially an idea to profile sandboxes, the code is written to take enviromental variables and send them back in a Base32 string over HTTP to an endpoint.
☆20Updated 10 months ago
Alternatives and similar repositories for SandboxSpy:
Users that are interested in SandboxSpy are comparing it to the libraries listed below
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Updated 2 years ago
- This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…☆23Updated 2 years ago
- Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.☆20Updated 3 years ago
- Automated (kinda) deployment of MalRDP infrastructure with Terraform & Ansible☆12Updated last year
- Perform Windows domain enumeration via LDAP☆36Updated 2 years ago
- ☆30Updated 2 years ago
- A cloud automation system for Red Teams based on Terraform and Ansible☆24Updated 3 years ago
- Scripts to interact with Microsoft Graph APIs☆34Updated 4 months ago
- ☆17Updated last year
- ☆16Updated 11 months ago
- Items related to the RedELK workshop given at security conferences☆28Updated last year
- A collection of tools using OCR to extract potential usernames from RDP screenshots.☆30Updated 10 months ago
- Serving files with conditions, serverside keying and more.☆17Updated 2 years ago
- ☆23Updated 3 years ago
- Generate Apache mod_rewrite rules for Mythic C2 profiles☆28Updated 3 years ago
- ☆13Updated 3 years ago
- Modified version of PEAS client for offensive operations☆38Updated 2 years ago
- Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual☆13Updated 2 years ago
- A BOF.NET program to split a file into smaller chunks and email it via a specified SMTP relay.☆14Updated 3 years ago
- .NET wrapper around LogonUserA to test creds☆11Updated 2 years ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- Extension functionality for the NightHawk operator client☆26Updated last year
- Modified version of Impacket to use dynamic NTLMv2 Challenge/Response☆18Updated 2 years ago
- Socks proxy server using powershell. Supports local and reverse connections for pivoting.☆11Updated 4 years ago
- The Totally Legit Authentication Dialog☆12Updated last year
- ansible roles to download and install empire (BC-Security),deathstar(byt3bl33der) and starkiller (BC-Security)☆23Updated 2 years ago
- Ansible role that Installs Mythic☆14Updated 8 months ago
- AutoPoC Generator HoneyPoC☆35Updated 8 months ago
- ☆19Updated 4 years ago