cxnturi0n / convoC2
C2 infrastructure that allows Red Teamers to execute system commands on compromised hosts through Microsoft Teams.
☆360Updated last month
Alternatives and similar repositories for convoC2:
Users that are interested in convoC2 are comparing it to the libraries listed below
- sandbox approach for malware developers and red teamers to test payloads against detection mechanisms before deployment☆531Updated last week
- AV/EDR Lab environment setup references to help in Malware development☆363Updated 2 months ago
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆546Updated 7 months ago
- PowerShell scripts for alternative SharpHound enumeration, including users, groups, computers, and certificates, using the ActiveDirector…☆306Updated 2 months ago
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆391Updated 2 weeks ago
- Extract and execute a PE embedded within a PNG file using an LNK file.☆355Updated 3 months ago
- A BloodHound collector for Microsoft Configuration Manager☆300Updated last month
- Deploy reverse shells and perform stealthy process injection with EchoStrike – a Go-based tool for ethical hacking and Red Team operation…☆170Updated 5 months ago
- Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC☆331Updated last month
- Lab used for workshop and CTF☆172Updated last week
- ☆291Updated 2 months ago
- Materials for the workshop "Red Team Ops: Havoc 101"☆365Updated 4 months ago
- winPEAS, but for Active Directory☆144Updated 2 months ago
- This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at t…��☆356Updated 2 months ago
- .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation☆268Updated 3 months ago
- Collection of OPSEC Tradecraft and TTPs for Red Team Operations☆283Updated last week
- Simulate the behavior of AV/EDR for malware development training.☆460Updated last year
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆274Updated 8 months ago
- I will be uploading all the codes which I created with the help either opensource projects or blogs. This is a step by step EDR learning …☆267Updated last year
- Cobalt Strike HTTPS beaconing over Microsoft Graph API☆563Updated 7 months ago
- Amsi Bypass payload that works on Windwos 11☆375Updated last year
- Useful C2 techniques and cheatsheets learned from engagements☆461Updated 4 months ago
- This repository is a compilation of all APT simulations that target many vital sectors,both private and governmental. The simulation inc…☆477Updated last week
- MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.☆504Updated 6 months ago
- Kill AV/EDR leveraging BYOVD attack☆336Updated last year
- Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound☆513Updated 3 months ago
- Tool to remotely dump secrets from the Windows registry☆426Updated last month
- KnowsMore is a swiss army knife tool for pentesting Microsoft Active Directory (NTLM Hashes, BloodHound, NTDS and DCSync).☆217Updated 6 months ago
- Automated Active Directory Enumeration☆433Updated 3 weeks ago
- Find potential DLL Sideloads on your windows computer☆174Updated last month