io-tl / Mara
Mara is a userland pty/tty sniffer
☆53Updated last year
Alternatives and similar repositories for Mara:
Users that are interested in Mara are comparing it to the libraries listed below
- PoC for CVE-2021-4034 dubbed pwnkit☆34Updated 3 years ago
- Exchangelib wrapper for pentesting☆59Updated last month
- A little implant which SSH's back with a shell☆36Updated 3 years ago
- ☆12Updated last year
- stealth userland kit that doesn't use sys_clone/sys_execve call☆30Updated last year
- Fork of ligolo-ng with exec and service capability☆17Updated last year
- Simple HTTP async comms using standard GET/POST requests☆32Updated last week
- Loads a program into a memfd and runs it.☆12Updated 2 years ago
- Ingest openldap data into bloodhound☆78Updated 3 years ago
- Asynchronous NFSv3 client in pure Python☆26Updated this week
- Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions☆54Updated 3 years ago
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆80Updated last year
- CVE-2023-34362: MOVEit Transfer Unauthenticated RCE☆63Updated 11 months ago
- Smart Card PIN swiping DLL☆76Updated 4 years ago
- A third-party Gopher Assassin for the Havoc Framework.☆44Updated last year
- A local LKM rootkit loader/dropper that lists available security mechanisms☆52Updated 3 years ago
- WhoAmI by asking the LDAP service on a domain controller.☆61Updated 3 years ago
- IOXIDResolver from AirBus Security/PingCastle☆47Updated 4 years ago
- This is a proof-of-concept of malicious software running inside of ModSecurity WAF.☆32Updated 3 years ago
- Modified version of Pypykatz to print encrypted credentials☆51Updated 2 years ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆30Updated last week
- Java archive implant toolkit.☆60Updated 3 weeks ago
- ☆38Updated 2 years ago
- Golang search engine scraper intended for identification of published ClickOnce deployments☆72Updated 4 months ago
- Establishes mutually trusted TLS connections based on a pre-shared connection key.☆48Updated last year
- C# and Impacket implementation (here with Kerberos auth support) of PrintNightmare CVE-2021-1675/CVE-2021-34527☆29Updated 3 years ago
- ☆35Updated 3 years ago
- ☆42Updated 2 years ago
- Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR☆99Updated 3 years ago
- Golang C2 Server and Agents using XMT (https://github.com/iDigitalFlame/xmt)☆32Updated 4 months ago