jconwell / secret_handshake

Related projects: ⓘ

• synacktiv / ntdissector
  ☆119Updated last month
• BC-SECURITY / Long-Live-The-Empire
  A comprehensive workshop aimed to equip participants with an in-depth understanding of modern Command and Control (C2) concepts, focusing…
  ☆97Updated last year
• bananabr / TimeException
  A tool to find folders excluded from AV real-time scanning using a time oracle
  ☆230Updated 7 months ago
• nickvangilder / most-average-c2-ever
  The most average C2 ever (MACE)
  ☆95Updated 2 years ago
• MythicAgents / Athena
  ☆172Updated last week
• ACE-Responder / RogueSliver
  A suite of tools to disrupt campaigns using the Sliver C2 framework.
  ☆245Updated last year
• Allevon412 / TeamsImplant
  ☆200Updated 2 years ago
• deepinstinct / NoFilter
  ☆290Updated last year
• maliciousgroup / C2_Automation
  C2 Automation using Linode
  ☆78Updated last year
• Sq00ky / SMB-Session-Spoofing
  ☆117Updated last year
• trustedsec / specula
  ☆171Updated last month
• nettitude / Aladdin
  ☆216Updated 10 months ago
• VirtualAlllocEx / Payload-Download-Cradles
  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …
  ☆256Updated 2 years ago
• mandiant / msi-search
  ☆260Updated last year
• RedSiege / jargon
  ☆114Updated 2 months ago
• bitsadmin / chophound
  Some scripts to support with importing large datasets into BloodHound
  ☆75Updated 9 months ago
• fkasler / dolosjs
  Red Team "Drop and Run" NAC (802.1x) Bypass
  ☆66Updated last year
• 1njected / CMLoot
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares
  ☆152Updated last year
• t3hbb / DefenderCheck
  Identifies the bytes that Microsoft Defender flags on.
  ☆75Updated 2 years ago
• Flangvik / QRucible
  Python utility that generates "imageless" QR codes in various formats
  ☆88Updated last month
• MaLDAPtive / Invoke-Maldaptive
  MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.
  ☆167Updated last month
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆164Updated last year
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆136Updated last month
• OccamsXor / Dragnmove
  Infect Shared Files In Memory for Lateral Movement
  ☆191Updated last year
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆64Updated 3 weeks ago
• S3cur3Th1sSh1t / Ruy-Lopez
  ☆290Updated last year
• OmriBaso / BesoToken
  A tool to Impersonate logged on users without touching LSASS (Including non-Interactive sessions).
  ☆94Updated last year
• werdhaihai / AtlasReaper
  A command-line tool for reconnaissance and targeted write operations on Confluence and Jira instances.
  ☆239Updated last year
• tothi / serviceDetector
  Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin pr…
  ☆214Updated last year
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆316Updated 2 months ago