naksyn / Pyramid
a tool to help operate in EDRs' blind spots
☆705Updated 2 months ago
Alternatives and similar repositories for Pyramid:
Users that are interested in Pyramid are comparing it to the libraries listed below
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆1,179Updated last year
- Dump NTDS with golden certificates and UnPAC the hash☆632Updated 11 months ago
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆897Updated 8 months ago
- Quietly enumerate an Active Directory Domain via LDAP parsing users, admins, groups, etc.☆486Updated 2 years ago
- Useful C2 techniques and cheatsheets learned from engagements☆462Updated 4 months ago
- A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) wit…☆511Updated 2 weeks ago
- ☆653Updated 3 weeks ago
- A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…☆456Updated 2 years ago
- Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".☆649Updated last year
- Materials for the workshop "Red Team Ops: Havoc 101"☆365Updated 4 months ago
- Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound☆514Updated 3 months ago
- An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer☆705Updated last year
- ☆701Updated this week
- Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories,…☆698Updated last year
- Python version of the C# tool for "Shadow Credentials" attacks☆671Updated this week
- Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, …☆850Updated 3 months ago
- ☆404Updated last year
- Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.☆1,133Updated 8 months ago
- C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.☆390Updated 5 months ago
- "Golden" certificates☆654Updated 6 months ago
- ☆410Updated 2 years ago
- Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …☆742Updated last year
- Cobalt Strike UDRL for memory scanner evasion.☆903Updated 8 months ago
- Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.☆354Updated last year
- ☆760Updated 2 years ago
- Dumping DPAPI credz remotely☆1,067Updated 3 months ago
- Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types☆377Updated 2 years ago
- A light-weight first-stage C2 implant written in Nim (and Rust).☆826Updated 6 months ago
- ☆469Updated 3 months ago
- Aims to identify sleeping beacons☆564Updated 2 months ago