idfp / lnk-builderLinks
Malicious shortcut file builder for spear-phishing and red-team engagement.
☆15Updated last year
Alternatives and similar repositories for lnk-builder
Users that are interested in lnk-builder are comparing it to the libraries listed below
Sorting:
- C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)☆56Updated 2 years ago
- Python3 HTTP Server with upload functionality☆13Updated last year
- ☆88Updated 2 years ago
- Modified versions of the Cobalt Strike Process Injection Kit☆95Updated last year
- ☆107Updated 4 months ago
- A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader☆40Updated 8 months ago
- PowerShell script to terminate protected processes such as anti-malware and EDRs.☆26Updated 2 years ago
- ☆56Updated last year
- Winsocket for Cobalt Strike.☆98Updated last year
- CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution☆45Updated last year
- C# havoc implant☆99Updated 2 years ago
- Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …☆84Updated 2 years ago
- A small (Edited) POC to make defender useless by removing its token privileges and lowering the token integrity☆32Updated 2 years ago
- Run Cobalt Strike BOFs in Brute Ratel C4!☆67Updated 2 months ago
- Tool to bypass LSA Protection (aka Protected Process Light)☆54Updated 5 months ago
- Alternative Shellcode Execution Via Callbacks in C# with P/Invoke☆78Updated 2 years ago
- .bin file to shellcode convertor☆38Updated 11 months ago
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆111Updated 2 years ago
- this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)☆83Updated last year
- This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for loc…☆51Updated 2 years ago
- A third-party Gopher Assassin for the Havoc Framework.☆44Updated last year
- Lateral Movement via the .NET Profiler☆82Updated 7 months ago
- An impacket-lite cli tool that combines many useful impacket functions using a single session.☆51Updated this week
- In-memory sleep encryption and heap encryption for Go applications through a shellcode function.☆39Updated last year
- ☆71Updated last year
- Terminate AV/EDR leveraging BYOVD attack☆87Updated 3 months ago
- Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement☆64Updated 3 years ago
- ProcExp Driver (Ab)use☆22Updated 2 years ago
- ☆44Updated 3 weeks ago
- Rewrite to fit my needs☆28Updated 11 months ago