monoxgas / FlyingAFalseFlagLinks
Slides and Code for the BHUSA 2019 talk: Flying a False Flag
☆238Updated 5 years ago
Alternatives and similar repositories for FlyingAFalseFlag
Users that are interested in FlyingAFalseFlag are comparing it to the libraries listed below
Sorting:
- Parse NTLM challenge messages over HTTP and SMB☆151Updated 2 years ago
- Constrained Language Mode + AMSI bypass all in one☆160Updated 6 years ago
- A list of files / paths to probe when arbitrary files can be read on a Microsoft Windows operating system☆204Updated 2 years ago
- BlueKeep scanner supporting NLA☆167Updated 6 years ago
- Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)☆137Updated 5 years ago
- lateral movement techniques that can be used during red team exercises☆272Updated 5 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆113Updated 5 years ago
- A HTA shell to assist with breakout assessments.☆112Updated 3 years ago
- Domain user enumeration tool☆215Updated last year
- An Insider Threat Toolkit☆153Updated 6 years ago
- BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET☆148Updated 5 years ago
- CobaltStrike External C2 for Websockets☆197Updated 6 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆261Updated 6 years ago
- Aggregation of Cobalt Strike's aggressor scripts.☆142Updated 7 years ago
- poc for CVE-2020-1337 (Windows Print Spooler Elevation of Privilege)☆171Updated 5 years ago
- PEAS is a Python 2 library and command line application for running commands on an ActiveSync server e.g. Microsoft Exchange.☆181Updated 2 years ago
- A Powershell implementation of PrivExchange designed to run under the current user's context☆125Updated 6 years ago
- Slides from my talk in "Hackinparis" 2019 edition☆91Updated 6 years ago
- A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilities☆205Updated 4 years ago
- A tool to create obfuscated HTA script.☆178Updated 4 years ago
- Powershell module to get the NetNTLMv2 hash of the current user☆96Updated 3 years ago
- ☆194Updated 5 years ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆166Updated 5 years ago
- Exploits and advisories☆202Updated last month
- Lateral Movement technique using DCOM and HTA☆235Updated 2 years ago
- DupeKeyInjector☆135Updated 3 years ago
- Check if MS-RPRN is remotely available with powershell/c#☆173Updated 6 years ago
- ☆128Updated 2 years ago
- Used for the osce exam preparation☆75Updated 9 years ago
- Resources for our Active Directory security workshops☆140Updated 4 years ago