grahamhelton / USP
Establishes persistence on a Linux system by creating a udev rule that triggers the execution of a specified payload (binary or script)
☆143Updated 8 months ago
Alternatives and similar repositories for USP
Users that are interested in USP are comparing it to the libraries listed below
Sorting:
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆164Updated 5 months ago
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆187Updated 5 months ago
- SHELLSILO is a cutting-edge tool that translates C syntax into syscall assembly and its corresponding shellcode. It streamlines the proce…☆132Updated 6 months ago
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆141Updated 9 months ago
- A Mythic Agent written in PIC C.☆189Updated 3 months ago
- Stage 0☆159Updated 4 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆139Updated last month
- ☆192Updated 7 months ago
- An interactive shell to spoof some LOLBins command line☆184Updated last year
- ☆179Updated last month
- ☆157Updated last year
- A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …☆162Updated 2 weeks ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆112Updated last month
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆136Updated last month
- Local & remote Windows DLL Proxying☆164Updated 10 months ago
- linikatz is a tool to attack AD on UNIX☆146Updated last year
- Decrypt GlobalProtect configuration and cookie files.☆148Updated 8 months ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Updated last month
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆199Updated 6 months ago
- SOCKS5 proxy tool that uses Azure Blob Storage as a means of communication.☆154Updated 2 weeks ago
- ☆74Updated last week
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆148Updated last year
- Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.☆158Updated 2 months ago
- Ghosting-AMSI☆165Updated 2 weeks ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆198Updated 11 months ago
- ☆202Updated last year
- Python implementation of GhostPack's Seatbelt situational awareness tool☆257Updated 6 months ago
- Example code samples from our ScriptBlock Smuggling Blog post☆90Updated 10 months ago
- ☆172Updated 6 months ago
- A web assembly (WASM) phishing lure generator based on pre-built templates and written in Rust with some GenAI assistance. W.A.L.K. aims …☆82Updated 8 months ago