gellin / bantam
A PHP backdoor management and generation tool/C2 featuring end to end encrypted payload streaming designed to bypass WAF, IDS, SIEM systems.
☆265Updated 2 years ago
Related projects: ⓘ
- SonicWall SSL-VPN Exploit☆173Updated 3 years ago
- ☆291Updated this week
- Windows active user credential phishing tool☆277Updated 4 years ago
- .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers☆787Updated 2 years ago
- Exploit Code for CVE-2020-1472 aka Zerologon☆374Updated 3 years ago
- WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations☆339Updated 3 years ago
- RedPeanut is a small RAT developed in .Net Core 2 and its agent in .Net 3.5 / 4.0.☆331Updated last year
- Asynchronous Password Spraying Tool in C# for Windows Environments☆306Updated 9 months ago
- Abuse CVE-2020-1472 (Zerologon) to take over a domain and then repair the local stored machine account password.☆176Updated last year
- Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)☆405Updated 3 years ago
- Remote Command Execution as SYSTEM on Windows IoT Core (releases available for Python2.7 & Python3)☆371Updated 3 years ago
- BoobSnail allows generating Excel 4.0 XLM macro. Its purpose is to support the RedTeam and BlueTeam in XLM macro generation.☆253Updated 3 years ago
- FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.☆245Updated last year
- Command line tool to extract/decrypt the password that was stored in the LSA by SysInternals AutoLogon☆210Updated 3 years ago
- ☆289Updated 2 months ago
- A collection of tools to abuse chrome browser☆282Updated 3 years ago
- Information released publicly by NCC Group's Full Spectrum Attack Simulation (FSAS) team.☆608Updated 2 years ago
- Find specific users in active directory via their username and logon IP address☆374Updated 4 years ago
- A tool to be used in post exploitation phase for blue and red teams to bypass APPLICATIONCONTROL policies☆309Updated last year
- Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime pat…☆790Updated 3 years ago
- Credentials gathering tool automating remote procdump and parse of lsass process.☆749Updated 4 years ago
- SMBGhost (CVE-2020-0796) Automate Exploitation and Detection☆258Updated 2 years ago
- Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322☆347Updated 4 years ago
- ☆613Updated this week
- a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations…☆529Updated 2 years ago
- A modular C2 framework☆393Updated last month
- Combined port scanning w/ Masscan's speed & Nmap's scanning features.☆148Updated 2 years ago
- This is a weaponized WSUS exploit☆278Updated last year
- Exploit to SYSTEM for CVE-2021-21551☆236Updated 3 years ago
- A library of pretexts to use on offensive phishing engagements.☆318Updated 5 years ago