misterch0c / APT34Links
APT34/OILRIG leak
☆231Updated 6 years ago
Alternatives and similar repositories for APT34
Users that are interested in APT34 are comparing it to the libraries listed below
Sorting:
- A PowerShell example of the Windows zero day priv esc☆327Updated 6 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆258Updated 6 years ago
- Toolset for research malware and Cobalt Strike beacons☆211Updated 2 months ago
- ☆272Updated 2 years ago
- FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.☆254Updated 2 years ago
- Exploits and advisories☆190Updated 5 years ago
- A library for integrating communication channels with the Cobalt Strike External C2 server☆286Updated 7 years ago
- Python api for usage with cobalt strike's External C2 specification☆237Updated 2 years ago
- ☆229Updated 7 years ago
- PoC code for CVE-2019-0841 Privilege Escalation vulnerability☆240Updated 6 years ago
- Provides In-memory compilation and reflective loading of C# apps for AV evasion.☆370Updated last year
- Code from this article: https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/☆175Updated 4 years ago
- Public work for CVE-2019-0708☆292Updated 5 years ago
- Quick Malicious ClickOnceGenerator for Red Team☆249Updated 4 years ago
- Lazykatz is an automation developed to extract credentials from remote targets protected with AV and/or application whitelisting software…☆197Updated 7 years ago
- DNS-Persist is a post-exploitation agent which uses DNS for command and control.☆210Updated 7 years ago
- How To Execute Shellcode via HTA☆139Updated 7 years ago
- initial commit☆174Updated 6 years ago
- RedPeanut is a small RAT developed in .Net Core 2 and its agent in .Net 3.5 / 4.0.☆328Updated last year
- Uses Invoke-Shellcode to execute a payload and persist on the system.☆115Updated 8 years ago
- Lateral Movement technique using DCOM and HTA☆233Updated 2 years ago
- a tool to make it easy and fast to test various forms of injection☆173Updated 6 years ago
- DropboxC2C is a post-exploitation agent which uses Dropbox Infrastructure for command and control operations.☆150Updated 6 years ago
- PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)☆325Updated 6 years ago
- A payload stager using PowerShell☆184Updated 5 years ago
- ☆169Updated 7 years ago
- morphHTA - Morphing Cobalt Strike's evil.HTA☆523Updated 2 years ago
- Pazuzu: Reflective DLL to run binaries from memory☆216Updated 4 years ago
- PoC Exploit for CVE-2018-0802 (and optionally CVE-2017-11882)☆269Updated 7 years ago
- This repo contains my custom scripts for Penetration Testing and Red Team Assessments. I will keep on updating this repo as and when I ge…☆352Updated 6 years ago