jaamaal / Embed
Adapt practically persistence steadiness strategies working at Windows 10 utilized by sponsored nation-state threat actors, as Turla, ProjectSauron, APT29, EquationGroup, including Stuxnet / Flame.
☆19Updated 3 years ago
Related projects: ⓘ
- Dump Lsass Memory Using a Reflective Dll☆14Updated 2 years ago
- ☆12Updated 2 years ago
- ☆21Updated this week
- The repository accompanying the Buer Emulation workshop☆23Updated 3 years ago
- ☆44Updated 3 years ago
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Updated 2 years ago
- ☆14Updated last year
- ☆19Updated this week
- A simple injector that uses LoadLibraryA☆15Updated 4 years ago
- ☆10Updated this week
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆33Updated 3 years ago
- Ransoblin (Ransomware Bokoblin)☆17Updated 3 years ago
- AMSI detection PoC☆30Updated 4 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆28Updated 2 years ago
- Sources Codes of many Office Malwares☆15Updated 2 years ago
- ☆22Updated this week
- XOR crypt/decrypt using C#☆12Updated 3 years ago
- JALSI - Just Another Lame Shellcode Injector☆30Updated 3 years ago
- ☆23Updated 2 years ago
- A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…☆21Updated 2 years ago
- Execute embedded Mimikatz☆13Updated 2 years ago
- A collection of my presentation materials.☆16Updated 4 months ago
- ☆17Updated this week
- A C# Tool to find left over pentest data for use in your pentest or redteam op. Blue could maybe use to find files to cleanup☆35Updated last year
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆49Updated 3 years ago
- ☆12Updated 2 years ago
- ☆25Updated this week
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆29Updated 2 years ago
- ☆28Updated this week
- PoC code from blog☆16Updated 4 years ago