dobin / ace-firefistLinks
Attack chain emulator. Write recipes for initial access easily
☆21Updated 7 months ago
Alternatives and similar repositories for ace-firefist
Users that are interested in ace-firefist are comparing it to the libraries listed below
Sorting:
- A VSCode devcontainer for development of COFF files with batteries included.☆49Updated 2 years ago
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆39Updated last year
- macOS dylib stager☆36Updated 8 months ago
- Bunch of BOF files☆35Updated 3 months ago
- ☆47Updated 2 years ago
- Command Augmentation support for BOFs and .NET assemblies across agents☆34Updated 3 months ago
- A more reliable way of resolving syscall numbers in Windows☆52Updated last year
- StealthGuardian is a middleware layer that can be combined with adversary simulation tools to verify the resistance, detection level and…☆19Updated last year
- Python module for running BOFs☆72Updated 2 years ago
- ☆60Updated last year
- Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation☆31Updated 3 years ago
- Info related to the Outflank training: Microsoft Office Offensive Tradecraft☆52Updated last year
- Determine if the WebClient Service (WebDAV) is running on a remote system☆19Updated last year
- Random BOFs for LDAP tradecraft☆65Updated last month
- Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL☆22Updated 3 years ago
- RPC to WebClient startup☆51Updated last month
- ☆23Updated last year
- Python3 rewrite of AsOutsider features of AADInternals☆55Updated 2 months ago
- Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does☆29Updated 3 months ago
- Dumping LSA secrets: a story about task decorrelation☆14Updated last year
- Threadless Injection Payload Toolkit☆13Updated last year
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆68Updated last year
- RunPE adapted for x64 and written in C, does not use RWX☆28Updated last year
- Blog/Journal on how to backdoor VSCode extensions☆74Updated 2 months ago
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆87Updated 2 years ago
- ☆89Updated 3 years ago
- ☆60Updated 4 years ago
- BOF for C2 framework☆43Updated 10 months ago
- Parser and reconciliation tooling for large Active Directory environments.☆33Updated 7 months ago
- ☆36Updated 9 months ago