felamos / weirdhta
A tool to create obfuscated HTA script.
☆173Updated 3 years ago
Related projects: ⓘ
- lateral movement techniques that can be used during red team exercises☆265Updated 4 years ago
- Collection of awesome Cobalt Strike Aggressor Scripts. All credit due to the authors☆147Updated 5 years ago
- Constrained Language Mode + AMSI bypass all in one☆152Updated 5 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆105Updated 4 years ago
- ☆161Updated last year
- SPF are not as strong as you may think. Red Team tool to send email on behalf of your target corp☆132Updated 3 years ago
- GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects☆244Updated 3 years ago
- A HTA shell to assist with breakout assessments.☆112Updated 2 years ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆166Updated 4 years ago
- Powershell module to get the NetNTLMv2 hash of the current user☆92Updated 2 years ago
- Quick Malicious ClickOnceGenerator for Red Team☆244Updated 3 years ago
- Automated script for setting up CobaltStrike redirectors (nginx reverse proxy, letsencrypt)☆139Updated 6 years ago
- A Powershell implementation of PrivExchange designed to run under the current user's context☆123Updated 5 years ago
- Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.☆140Updated 4 years ago
- ObscurityLabs RedTeam C# Toolkit☆119Updated 5 years ago
- Shellcoding utilities☆216Updated 3 years ago
- Various Aggressor Scripts I've Created.☆146Updated 2 years ago
- DLL Generator for side loading attack☆165Updated 5 years ago
- Lateral Movement technique using DCOM and HTA☆228Updated last year
- Run Rubeus via Rundll32☆193Updated 4 years ago
- ☆310Updated this week
- Elite is the client-side component of the Covenant project. Covenant is a .NET command and control framework that aims to highlight the a…☆115Updated last year
- Parse NTLM challenge messages over HTTP and SMB☆140Updated last year
- Yet another PoC for https://www.wietzebeukema.nl/blog/hijacking-dlls-in-windows☆142Updated 4 years ago
- A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…☆59Updated 5 years ago
- An Insider Threat Toolkit☆149Updated 5 years ago
- CobaltStrike External C2 for Websockets☆194Updated 5 years ago
- Recon-AD, an AD recon tool based on ADSI and reflective DLL’s☆312Updated 4 years ago
- ☆8Updated 3 years ago
- Create a minidump of the LSASS process from memory☆254Updated last year