praetorian-inc / INTRACTABLEGIRAFFE

Related projects: ⓘ

• mgeeky / CustomXMLPart
  A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.
  ☆37Updated 2 years ago
• realoriginal / rogue
  ☆57Updated this week
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆25Updated 11 months ago
• pracsec / AmsiScanner
  A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.
  ☆56Updated 11 months ago
• SaadAhla / PSpersist
  Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell pro…
  ☆84Updated last year
• 0xthirteen / AssemblyHunter
  Find .net assemblies locally
  ☆85Updated last year
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆60Updated last year
• nickzer0 / RagingRotator
  A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.
  ☆72Updated 3 months ago
• iomoath / RedWardenLite
  A lightweight HTTP/HTTPS reverse proxy for efficient, policy-based traffic filtering and redirection.
  ☆42Updated last year
• deepinstinct / AMSI-Unchained
  Unchain AMSI by patching the provider’s unmonitored memory space
  ☆87Updated last year
• Bl4ckM1rror / PEAs
  ☆57Updated 9 months ago
• m8sec / OffsecDev
  Working repo used to experiment with various languages as it relates to offensive security & evasion.
  ☆28Updated 3 months ago
• persistent-security / hermes-the-messenger
  A PoC for achieving persistence via push notifications on Windows
  ☆43Updated last year
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆74Updated 3 months ago
• Octoberfest7 / Presentations
  Slide decks and/or materials from conference presentations
  ☆55Updated last year
• VirtualAlllocEx / Taskschedule-Persistence-Download-Cradles
  Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged
  ☆86Updated 2 years ago
• ps1337 / Lastenzug
  Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level
  ☆25Updated 2 years ago
• jordanjoewatson / payloadkit
  An offensive security framework for writing payloads
  ☆13Updated 2 years ago
• reveng007 / DareDevil
  Stealthy Loader-cum-dropper/stage-1/stager targeting Windows10
  ☆37Updated last year
• LuemmelSec / CVE-2023-29357
  ☆50Updated 11 months ago
• VirtualAlllocEx / DSC_SVC_REMOTE
  This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for loc…
  ☆50Updated last year
• peiga / DumpThatLSASS
  Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation
  ☆29Updated last year
• Quantumite / slidecode
  XOR-based shellcode encoder
  ☆31Updated last year
• HuskyHacks / the-crown-defcon615
  Repo for The Crown: Exploratory Analysis of Nim Malware DEF CON 615 talk
  ☆44Updated 2 years ago
• CCob / PinSwipe
  Smart Card PIN swiping DLL
  ☆74Updated 3 years ago
• ScriptIdiot / BeaconNotifier-Discord
  Cobalt strike CNA script to notify you via Discord whenever there is a new beacon.
  ☆32Updated 2 years ago
• Octoberfest7 / Cohab_Processes
  A small Aggressor script to help Red Teams identify foreign processes on a host machine
  ☆79Updated last year
• nullsection / Sneaky-DLL-Stager
  Reasonably undetected shellcode stager and executer.
  ☆34Updated last week
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆55Updated 5 months ago
• knight0x07 / PoC-Malware-TTPs
  PoC-Malware-TTPs
  ☆48Updated last year