maxamin / exploitpack-from-an-APT-infrastructureLinks
exploitpack extracted from a honeynet which is being prepared by intruduers to be used as an exploitation infrastructure
☆15Updated 3 years ago
Alternatives and similar repositories for exploitpack-from-an-APT-infrastructure
Users that are interested in exploitpack-from-an-APT-infrastructure are comparing it to the libraries listed below
Sorting:
- Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.☆149Updated 3 years ago
- This project is 'bridge' between the sleep and python language. It allows the control of a Cobalt Strike teamserver through python withou…☆188Updated last month
- Neton is a tool for getting information from Internet connected sandboxes☆96Updated 2 years ago
- Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement☆66Updated 3 years ago
- PickleC2 is a post-exploitation and lateral movements framework☆94Updated 4 years ago
- PowerShell Asynchronous TCP Reverse Shell☆160Updated last year
- Zombie Content management systems exploitation Bot Source☆10Updated 3 years ago
- Coyote is a standalone C# post-exploitation implant for maintaining access to compromised Windows infrastructure during red team engageme…☆20Updated 3 years ago
- Escalate from a low-integrity Administrator account to NT AUTHORITY\SYSTEM without an LPE exploit by combining a COM UAC bypass and Token…☆159Updated 3 years ago
- C# C2 Framework centered around Stage 1 operations☆213Updated 3 years ago
- WIP shellcode loader in nim with EDR evasion techniques☆220Updated 3 years ago
- Lockbit3.0 Microsoft Defender MpClient.dll DLL Hijacking PoC☆178Updated 3 years ago
- A Golang implant that uses Discord as a C2 team server☆66Updated 9 months ago
- backdoor that uses dns to communicate☆33Updated last month
- Beacon Object File PoC implementation of KillDefender☆234Updated 3 years ago
- CVE-2021-24084 Windows Local Privilege Escalation Left officially unpatched since 2020. Hence, its still a zero day☆51Updated 3 years ago
- CVE-2021-40444☆65Updated 3 years ago
- The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …☆44Updated 3 years ago
- Windows Oracle Database Attack Toolkit☆80Updated 3 years ago
- 🐍 Double Venom (DVenom) is a tool that provides an encryption wrapper and loader for your shellcode.☆158Updated 2 years ago
- Project for identifying executables and DLLs vulnerable to environment-variable based DLL hijacking.☆60Updated 3 years ago
- Bypass Detection By Randomising ROR13 API Hashes☆144Updated 3 years ago
- C# code to Sandbox Defender (and most probably other AV/EDRs).☆166Updated 3 years ago
- Simple PoC of the CVE-2023-23397 vulnerability with the payload sent by email.☆126Updated 2 years ago
- 「🛡️」AVs/EDRs Evasion tool☆105Updated 9 months ago
- Extendable payload obfuscation and delivery framework☆145Updated 2 years ago
- A Post exploitation tool written in C# uses either CIM or WMI to query remote systems.☆202Updated 4 years ago
- Weaponizing for privileged file writes bugs with PrintNotify Service☆133Updated 3 years ago
- Repository for archiving Cobalt Strike configuration☆35Updated last week
- Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.☆111Updated 3 years ago