mobdk / CopyCat
Simple rapper for Mimikatz, bypass Defender
☆140Updated 3 years ago
Alternatives and similar repositories for CopyCat:
Users that are interested in CopyCat are comparing it to the libraries listed below
- Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus☆229Updated 3 years ago
- Koppeling x Metatwin x LazySign☆210Updated 3 years ago
- Beacon Object File PoC implementation of KillDefender☆224Updated 3 years ago
- A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.☆298Updated 2 years ago
- pyCobaltHound is an Aggressor script extension for Cobalt Strike which aims to provide a deep integration between Cobalt Strike and Blood…☆138Updated last year
- credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege☆124Updated 3 years ago
- New UAC bypass for Silent Cleanup for CobaltStrike☆192Updated 3 years ago
- Bypassing AppLocker with C#☆139Updated 3 years ago
- Aggrokatz is an aggressor plugin extension for Cobalt Strike which enables pypykatz to interface with the beacons remotely and allows it …☆157Updated 3 years ago
- POC tools for exploring SMB over QUIC protocol☆122Updated 3 years ago
- UI for creating LNKs☆103Updated 3 years ago
- Agressor script that lists available Cobalt Strike beacon commands and colors them based on their type☆205Updated last year
- Source for tasks I have used with Covenant☆120Updated 4 years ago
- A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…☆268Updated last year
- Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…☆240Updated 3 years ago
- Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF) via Syswhispers2☆185Updated 2 years ago
- Pass the Hash to a named pipe for token Impersonation☆302Updated last year
- Start new PowerShell without etw and amsi in pure nim☆157Updated 3 years ago
- Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…☆102Updated 3 years ago
- Modular C# framework to exfiltrate loot over secure and trusted channels.☆126Updated 3 years ago
- A BOF to automate common persistence tasks for red teamers☆274Updated 2 years ago
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆257Updated 2 years ago
- ☆69Updated 3 years ago
- DLL Hijack Search Order Enumeration BOF☆147Updated 3 years ago
- Pass the Hash to a named pipe for token Impersonation☆143Updated 3 years ago
- Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…☆264Updated 4 years ago
- Password attacks and MFA validation against various endpoints in Azure and Office 365☆153Updated 2 years ago
- Extendable payload obfuscation and delivery framework☆143Updated 2 years ago
- A small project to bypass UAC in windows 10/8/7 using dll injection technique☆74Updated 4 years ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆254Updated last year