kyle41111 / RedTeamHelp

Related projects ⓘ

Alternatives and complementary repositories for RedTeamHelp

• G0ldenGunSec / GetWebDAVStatus
  Determine if the WebClient Service (WebDAV) is running on a remote system
  ☆123Updated 8 months ago
• deepinstinct / AMSI-Unchained
  Unchain AMSI by patching the provider’s unmonitored memory space
  ☆88Updated last year
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆45Updated last year
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆53Updated 2 years ago
• daem0nc0re / Abusing_Weak_ACL_on_Certificate_Templates
  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
  ☆119Updated 3 years ago
• n00py / GetFGPP
  Get Fine Grained Password Policy
  ☆65Updated 6 months ago
• Wh04m1001 / DiagTrackEoP
  ☆89Updated 2 years ago
• powerseb / PowerExtract
  ☆112Updated last year
• Dramelac / GoldenCopy
  Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.
  ☆80Updated 6 months ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆166Updated last year
• csandker / pxethiefy
  ☆36Updated last month
• Crypt0s / DelegationBOF
  ☆138Updated 2 years ago
• Octoberfest7 / Presentations
  Slide decks and/or materials from conference presentations
  ☆54Updated 2 years ago
• ChoiSG / OneDriveUpdaterSideloading
  Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post
  ☆86Updated 2 years ago
• SpecterOps / cred1py
  A Python POC for CRED1 over SOCKS5
  ☆134Updated last month
• nickzer0 / RagingRotator
  A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.
  ☆74Updated 5 months ago
• CodeXTF2 / PyHmmm
  Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …
  ☆78Updated last year
• susMdT / SharpAgent
  C# havoc implant
  ☆96Updated last year
• 0xthirteen / AssemblyHunter
  Find .net assemblies locally
  ☆88Updated 2 years ago
• icyguider / PowerChunker
  Bypass AMSI via PowerShell by splitting a file into multiple chunks
  ☆49Updated 3 years ago
• mmnoureldin / UnmanagedPowerShell
  ☆26Updated last year
• BC-SECURITY / IronSharpPack
  IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…
  ☆104Updated 6 months ago
• njcve / inflate.py
  Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.
  ☆117Updated 2 years ago
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆66Updated last year
• leftp / DPAPISnoop
  A C# tool to output crackable DPAPI hashes from user MasterKeys
  ☆130Updated 2 months ago
• mlcsec / ASRenum-BOF
  Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations
  ☆138Updated 8 months ago
• MaorSabag / SideLoadingDLL
  Do some DLL SideLoading magic
  ☆75Updated last year
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆78Updated 2 years ago
• garrettfoster13 / aced
  ☆151Updated 2 weeks ago
• bitsadmin / lofl
  Living Off the Foreign Land setup scripts
  ☆63Updated 3 weeks ago