cr7pt0 / MacroSploit2
MacroSploit is a modified version of unicorn used to generate a social engineering Microsoft Office macro payload for penetration testers . Macros generated include both a Windows Powershell payload and OSX Macscript payload. Original unicorn description - Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode stra…
☆8Updated 9 years ago
Alternatives and similar repositories for MacroSploit2:
Users that are interested in MacroSploit2 are comparing it to the libraries listed below
- A relatively flexible tool to parse mimikatz output☆35Updated 8 years ago
- ☆19Updated 7 years ago
- A sample bot for Cobalt Strike 3☆22Updated 8 years ago
- Quick and dirty System (Power)Shell using NamedPipe impersonation.☆43Updated 8 years ago
- Windows LNK/URL shortcut auto-binding hotkey (not a bug, feature)☆30Updated 6 years ago
- Empire HTTP(S) C2 redirector setup script☆47Updated 6 years ago
- Powershell Persistence Locator☆66Updated 8 years ago
- ☆84Updated 9 years ago
- ☆58Updated 7 years ago
- Fileless SQL Server CLR-based Custom Stored Procedure Command Execution☆35Updated 7 years ago
- ☆34Updated 8 years ago
- Environmental (and http) keying for scripting languages☆39Updated 6 years ago
- PHDAYS |||☆17Updated 11 years ago
- Spray SMB with hashes, Then psexec☆32Updated 5 years ago
- Cobalt Strike Field Manual - A quick reference for Windows commands that can be accessed in a beacon console.☆64Updated 7 years ago
- Yet Another SMB PSEXEC (Y.A.S.P) Tool☆21Updated 11 years ago
- Custom stagers with python encrypting proxy☆39Updated 9 years ago
- Executes lateral movement through PowerPoint DCOM objects☆19Updated 7 years ago
- Quick PoC I Wrote for Bypassing Next Gen AV Remotely for Pentesting☆41Updated 6 years ago
- Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.☆43Updated 7 years ago
- This module is used to exploit startup script execution through Windows Group Policy settings when configured to run off of a remote SMB …☆22Updated 5 years ago
- When CactusTorch meets WebDavDelivery and obfuscation☆63Updated 7 years ago
- This is a quick POC for using the Matt Nelson (enigma0x3) technique for generating a malicious .SettingContent-ms extension type for remo…☆51Updated 6 years ago
- ☆24Updated 8 years ago
- A WebDAV PROPFIND covert channel to deliver payloads☆52Updated 7 years ago
- Mimikatz HashClash☆12Updated 9 years ago
- Firework is a proof of concept tool to interact with Microsoft Workplaces creating valid files required for the provisioning process.☆44Updated 4 years ago
- ☆54Updated 7 years ago
- Socks5 server over Websockets☆40Updated 6 years ago
- Scripts for automating actions in Cobalt Strike☆11Updated 8 years ago