sevagas / Advanced_Initial_access_in_2024_OffensiveXLinks
Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
☆146Updated last year
Alternatives and similar repositories for Advanced_Initial_access_in_2024_OffensiveX
Users that are interested in Advanced_Initial_access_in_2024_OffensiveX are comparing it to the libraries listed below
Sorting:
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆118Updated last year
- Utilities for obfuscating shellcode☆96Updated 2 months ago
- A Python POC for CRED1 over SOCKS5☆161Updated last year
- A web assembly (WASM) phishing lure generator based on pre-built templates and written in Rust with some GenAI assistance. W.A.L.K. aims …☆96Updated last year
- ☆71Updated 8 months ago
- The DCERPC only printerbug.py version☆179Updated last month
- ☆136Updated 9 months ago
- Adversary Emulation Framework☆126Updated 5 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆176Updated last month
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆209Updated last year
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆153Updated last month
- Bypass AMSI By Dividing files into multiple smaller files☆46Updated 2 years ago
- ☆119Updated 8 months ago
- ☆214Updated last year
- tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it☆127Updated 3 months ago
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆194Updated last year
- WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"☆121Updated last year
- Find .net assemblies locally☆127Updated 3 years ago
- pysnaffler☆106Updated 3 months ago
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps☆143Updated last year
- DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.☆98Updated 2 years ago
- Automatically scan the file system to identify Electron applications vulnerable to ASAR tampering.☆76Updated last week
- ☆226Updated last year
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆147Updated last year
- Just some random Red Team Scripts that can be useful☆153Updated last year
- Example code samples from our ScriptBlock Smuggling Blog post☆92Updated last year
- Two in one, patch lifetime powershell console, no more etw and amsi!☆98Updated 7 months ago
- An impacket-lite cli tool that combines many useful impacket functions using a single session.☆56Updated 2 months ago
- A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.☆80Updated last year
- A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …☆33Updated 2 months ago