codewhitesec / LethalHTA
Lateral Movement technique using DCOM and HTA
☆231Updated 2 years ago
Alternatives and similar repositories for LethalHTA:
Users that are interested in LethalHTA are comparing it to the libraries listed below
- Collection of awesome Cobalt Strike Aggressor Scripts. All credit due to the authors☆152Updated 6 years ago
- DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.☆253Updated 6 years ago
- Evading WinDefender ATP credential-theft☆254Updated 5 years ago
- Aggressor scripts for phases of a pen test or red team assessment☆182Updated 7 months ago
- lateral movement techniques that can be used during red team exercises☆270Updated 5 years ago
- A collection of useful scripts for Cobalt Strike☆166Updated 7 months ago
- Constrained Language Mode + AMSI bypass all in one☆156Updated 5 years ago
- A library for integrating communication channels with the Cobalt Strike External C2 server☆283Updated 7 years ago
- CobaltStrike External C2 for Websockets☆194Updated 5 years ago
- GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects☆248Updated 4 years ago
- CSHARP DCOM Fun☆127Updated 5 years ago
- Collection of Aggressor Scripts for Cobalt Strike☆169Updated 6 years ago
- A C# implementation of PrivExchange by @_dirkjan.☆158Updated 6 years ago
- The PowerThIEf, an Internet Explorer Post Exploitation library☆130Updated 3 weeks ago
- Cobalt Strike Aggressor script menu for Powerview/SharpView☆130Updated 6 years ago
- ☆207Updated 6 years ago
- Check if MS-RPRN is remotely available with powershell/c#☆173Updated 6 years ago
- ☆350Updated 3 years ago
- Collection of scripts, binaries and the like to aid in WhiteList Evasion on a Microsoft Windows Network.☆129Updated 9 years ago
- PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)☆323Updated 5 years ago
- ☆229Updated 6 years ago
- Malleable C2 profiles for Cobalt Strike☆70Updated 2 years ago
- Create a minidump of the LSASS process from memory☆259Updated 2 years ago
- BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET☆145Updated 5 years ago
- Automated script for setting up CobaltStrike redirectors (nginx reverse proxy, letsencrypt)☆142Updated 7 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆256Updated 6 years ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆167Updated 4 years ago
- Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.☆203Updated 7 years ago
- Python api for usage with cobalt strike's External C2 specification☆228Updated 2 years ago
- A Powershell implementation of PrivExchange designed to run under the current user's context☆124Updated 6 years ago