sidaf / moonshine

Related projects: ⓘ

• Hagrid29 / AbuseAzureAPIPermissions
  Abuse Azure API permissions for red teaming
  ☆55Updated last year
• Octoberfest7 / Presentations
  Slide decks and/or materials from conference presentations
  ☆55Updated last year
• morRubin / NegoExRelay
  ☆83Updated 2 years ago
• myexploit / living_off_the_land
  ☆42Updated 2 months ago
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆64Updated 2 weeks ago
• EvilBytecode / Lifetime-AmsiBypass
  Lifetime AMSI bypass.
  ☆35Updated 2 months ago
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆54Updated 3 months ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆79Updated 2 months ago
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆80Updated 3 months ago
• emiliensocchi / azurehound-queries
  🌩️ Collection of BloodHound queries for Azure
  ☆40Updated last month
• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆53Updated last year
• mlcsec / SharpGraphView
  Microsoft Graph API post-exploitation toolkit
  ☆90Updated 2 months ago
• deletehead / ReleaseTheHounds
  ☆45Updated this week
• lkarlslund / hashmuncher
  Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
  ☆88Updated last year
• 0xe7 / RoastInTheMiddle
  ☆69Updated 10 months ago
• nettitude / SharpConflux
  ☆63Updated 6 months ago
• 0xHossam / WERPersistence
  ☆18Updated this week
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆39Updated 2 months ago
• 0xv1n / Havoc-ProfileGenerator
  malleable profile generator GUI for Havoc
  ☆53Updated last year
• bitsadmin / lofl
  Living Off the Foreign Land setup scripts
  ☆61Updated last month
• outflanknl / Training-MSOfficeOffensiveTradecraft
  Info related to the Outflank training: Microsoft Office Offensive Tradecraft
  ☆50Updated 4 months ago
• xpn / CloudInject
  ☆101Updated 4 months ago
• Helixo32 / SimpleEDR
  Simple EDR that injects a DLL into a process to place a hook on specific Windows API
  ☆88Updated last year
• Yeeb1 / SharpLansweeperDecrypt
  Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.
  ☆34Updated 6 months ago
• BC-SECURITY / Taming-Offensive-IronPython
  This workshop is designed to provide you with a solid understanding of IronPython, its integration with the .NET framework, and how it ca…
  ☆31Updated 6 months ago
• mgeeky / msi-shenanigans
  Proof of Concept code and samples presenting emerging threat of MSI installer files.
  ☆77Updated last year
• rkbennett / pybof
  Python module for running BOFs
  ☆63Updated last year
• puzzlepeaches / NTLMRecon
  Enumerate information from NTLM authentication enabled web endpoints 🔎
  ☆34Updated last year
• RedSiege / Chromatophore
  Utilities for obfuscating shellcode
  ☆38Updated 2 months ago
• EspressoCake / BOF_Development_Docker
  A VSCode devcontainer for development of COFF files with batteries included.
  ☆47Updated last year