iDigitalFlame / ThunderStorm

Related projects: ⓘ

• CodeXTF2 / PyHmmm
  Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …
  ☆74Updated 10 months ago
• kymb0 / Stealth_shellcode_runners
  ☆53Updated 5 months ago
• lkarlslund / hashmuncher
  Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
  ☆88Updated last year
• Octoberfest7 / lnk_generator
  Small project to facilitate creation of .lnk payloads
  ☆60Updated last year
• nullsection / Sneaky-DLL-Stager
  Reasonably undetected shellcode stager and executer.
  ☆34Updated last week
• 0xe7 / RoastInTheMiddle
  ☆69Updated 10 months ago
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆53Updated 2 years ago
• knight0x07 / PoC-Malware-TTPs
  PoC-Malware-TTPs
  ☆48Updated last year
• susMdT / SharpAgent
  C# havoc implant
  ☆90Updated last year
• SaadAhla / PSpersist
  Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell pro…
  ☆84Updated last year
• ChoiSG / OneDriveUpdaterSideloading
  Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post
  ☆84Updated last year
• emcghee / PayloadAutomation
  ☆116Updated 2 years ago
• LaresLLC / OffensiveSysAdmin
  A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools
  ☆80Updated last year
• ByteJunkies-co-uk / Metsubushi
  Generate droppers with encrypted payloads automatically.
  ☆53Updated 2 years ago
• rasta-mouse / SpawnWith
  ☆90Updated 6 months ago
• mgeeky / CustomXMLPart
  A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.
  ☆37Updated 2 years ago
• EvilBytecode / Lifetime-AmsiBypass
  Lifetime AMSI bypass.
  ☆35Updated 2 months ago
• tothi / NoteThief
  Grab unsaved Notepad contents with a Beacon Object File
  ☆10Updated 2 years ago
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆74Updated 3 months ago
• rkbennett / pybof
  Python module for running BOFs
  ☆63Updated last year
• Octoberfest7 / Presentations
  Slide decks and/or materials from conference presentations
  ☆55Updated last year
• An00bRektn / gopher47
  A third-party Gopher Assassin for the Havoc Framework.
  ☆44Updated 8 months ago
• ItsCyberAli / EncryptedReaper
  ☆42Updated this week
• nixpal / shellsilo
  SHELLSILO is a cutting-edge tool that translates C syntax into syscall assembly and its corresponding shellcode. It streamlines the proce…
  ☆81Updated 3 weeks ago
• p4p1 / havoc-privkit
  a port of privkit bof for havoc
  ☆21Updated 9 months ago
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆80Updated 3 months ago
• bitsadmin / lofl
  Living Off the Foreign Land setup scripts
  ☆61Updated last month
• BC-SECURITY / Taming-Offensive-IronPython
  This workshop is designed to provide you with a solid understanding of IronPython, its integration with the .NET framework, and how it ca…
  ☆31Updated 6 months ago
• improsec / CaddyStager
  ☆35Updated 2 years ago
• RedSiege / RandomScripts
  Scripts for public use that we've randomly written, or have updated from other people's work.
  ☆38Updated 2 months ago