ricardojoserf / covert-control
Google Drive, OneDrive and Youtube as covert-channels - Control systems remotely by uploading files to Google Drive, OneDrive, Youtube or Telegram
☆62Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for covert-control
- C# and Impacket implementation (here with Kerberos auth support) of PrintNightmare CVE-2021-1675/CVE-2021-34527☆29Updated 3 years ago
- RedDrop is a quick and easy web server for capturing and processing encoded and encrypted payloads and tar archives.☆57Updated 2 years ago
- Finding SSL Blindspots for Red Teams☆30Updated 4 years ago
- PyQT5 app for LOLBAS and GTFOBins☆45Updated 2 years ago
- In progress persistent download/upload/execution tool using Windows BITS.☆42Updated 3 years ago
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆90Updated 2 years ago
- Socks Proxy Server Plugin for Invoke-SocksProxy☆17Updated 2 weeks ago
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 3 years ago
- Windows TCPIP Finger Command / C2 Channel and Bypassing Security Software☆65Updated last year
- RDP Checker☆62Updated 9 months ago
- ☆47Updated 3 years ago
- PickleC2 is a post-exploitation and lateral movements framework☆84Updated 3 years ago
- A curated list of tools and techniques written from experience in weaponization of malware☆34Updated last year
- Distributed phishing framework designed to streamline offensive security phishing☆39Updated last year
- Tool to transfer credential files from Firefox to your local machine to decrypt offline.☆23Updated 3 years ago
- NSE script to detect ProxyOracle☆14Updated 3 years ago
- Tool to manipulate and weaponize Office Open XML documents.☆68Updated last year
- This repo will contain some basic pentest/RT commands.☆36Updated 2 years ago
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆79Updated 11 months ago
- Stealthy Stand Alone PHP Web Shell☆33Updated 5 years ago
- Cobalt Strike/C2 Servers☆13Updated 3 years ago
- Notification webhook for GoPhish☆52Updated 5 months ago
- ☆16Updated 3 years ago
- A web shell for pivoting and lateral movement☆31Updated 6 years ago
- Red Team tool for exfiltrating the target organization's Google People Directory that you have access to, via Google's API.☆59Updated 3 years ago
- ☆46Updated 2 years ago
- Azur3Alph4 is a PowerShell module that automates red-team tasks for ops on objective. This module situates in a post-breach (RCE achieved…☆62Updated 3 years ago
- Multi platform toolkit for an interactive DNS shell commands exfiltration, by using DNS-Cat you will be able to execute system commands i…☆109Updated 2 years ago