it-gorillaz / lnk2pwnLinks
Malicious Shortcut(.lnk) Generator
☆196Updated 6 years ago
Alternatives and similar repositories for lnk2pwn
Users that are interested in lnk2pwn are comparing it to the libraries listed below
Sorting:
- Tricks the target into enabling content (macros) with fake messages. Once enabled, uses macros to reduce the risk of suspision from targe…☆171Updated 6 months ago
- Medusa is a cross-platform C2 agent compatible with Python 2.7 and 3.8, compatible with Mythic☆192Updated last month
- ☆209Updated 4 months ago
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆257Updated 3 years ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆229Updated last month
- Bypass AMSI by patching AmsiScanBuffer☆274Updated 4 years ago
- Modular C# framework to exfiltrate loot over secure and trusted channels.☆130Updated 4 years ago
- ☆400Updated 4 years ago
- Koppeling x Metatwin x LazySign☆214Updated 4 years ago
- Shellcode launcher for AV bypass☆217Updated last year
- A User Impersonation tool - via Token or Shellcode injection☆420Updated 3 years ago
- Malicious Shortcut(.lnk) Generator☆85Updated 6 years ago
- Run Powershell without software restrictions.☆283Updated 4 years ago
- pyCobaltHound is an Aggressor script extension for Cobalt Strike which aims to provide a deep integration between Cobalt Strike and Blood…☆136Updated 2 years ago
- Python implementation for PrintNightmare (CVE-2021-1675 / CVE-2021-34527)☆198Updated 3 years ago
- ☆222Updated last year
- Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…☆244Updated 4 years ago
- Remotely enables Restricted Admin Mode☆213Updated 4 years ago
- LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript☆344Updated 4 years ago
- Inject remote template link into word document for remote template injection☆179Updated 4 years ago
- Agressor script that lists available Cobalt Strike beacon commands and colors them based on their type☆209Updated last year
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆336Updated last year
- Python interpreter for Cobalt Strike Malleable C2 Profiles. Allows you to parse, build and modify them programmatically.☆281Updated 10 months ago
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆400Updated last month
- PrintNightmare - Windows Print Spooler RCE/LPE Vulnerability (CVE-2021-34527, CVE-2021-1675) proof of concept exploits☆154Updated 4 years ago
- PowerShell Constrained Language Mode Bypass☆282Updated 4 years ago
- Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories,…☆269Updated last year
- The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.☆123Updated 5 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆361Updated last year
- Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin pr…☆237Updated 2 years ago