lawrenceamer / TChopper
conduct lateral movement attack by leveraging unfiltered services display name to smuggle binaries as chunks into the target machine
☆49Updated 3 years ago
Related projects: ⓘ
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Updated 2 years ago
- Perform Windows domain enumeration via LDAP☆36Updated 2 years ago
- (PoC) Tiny Excel BIFF8 Generator, to Embedded 4.0 Macros in xls files without Excel.☆41Updated 3 years ago
- Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082☆25Updated last year
- ☆50Updated this week
- Matryoshka loader is a tool that red team operators can leverage to generate shellcode for Microsoft Office document phishing payloads.☆37Updated 3 years ago
- ☆30Updated 4 years ago
- Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level☆25Updated 2 years ago
- Execute Mimikatz with different technique☆50Updated 2 years ago
- Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil☆20Updated 2 years ago
- Finding SSL Blindspots for Red Teams☆30Updated 4 years ago
- .NET 2.0 CLR project to retrieve saved browser credentials from Google Chrome, Mozilla Firefox and Microsoft Internet Explorer/Edge.☆19Updated 6 years ago
- ☆12Updated last year
- A little implant which SSH's back with a shell☆36Updated 2 years ago
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆90Updated 2 years ago
- Socks Proxy Server Plugin for Invoke-SocksProxy☆17Updated 2 months ago
- Modified version of PEAS client for offensive operations☆38Updated last year
- In progress persistent download/upload/execution tool using Windows BITS.☆42Updated 3 years ago
- A C implementation of the Sektor7 "A Thief" Windows privesc technique.☆59Updated 2 years ago
- Post-exploitation tool for attacking Active Directory domain controllers☆15Updated last year
- ☆16Updated 3 years ago
- Generate droppers with encrypted payloads automatically.☆53Updated 2 years ago
- ☆11Updated 4 years ago
- A cloud automation system for Red Teams based on Terraform and Ansible☆24Updated 3 years ago
- IOXIDResolver from AirBus Security/PingCastle☆45Updated 3 years ago
- ☆14Updated 2 weeks ago
- GhostLoader - AppDomainManager - Injection - 攻壳机动队☆50Updated 4 years ago
- Generate Apache mod_rewrite rules for Mythic C2 profiles☆26Updated 3 years ago
- ☆53Updated 2 years ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 2 years ago