sud0woodo / DCOMrade

Related projects ⓘ

Alternatives and complementary repositories for DCOMrade

• codewhitesec / LethalHTA
  Lateral Movement technique using DCOM and HTA
  ☆229Updated 2 years ago
• nettitude / Invoke-PowerThIEf
  The PowerThIEf, an Internet Explorer Post Exploitation library
  ☆130Updated 6 years ago
• Cybereason / Invoke-WMILM
  ☆229Updated 6 years ago
• GhostPack / SharpRoast
  DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.
  ☆253Updated 6 years ago
• Mr-Un1k0d3r / MaliciousClickOnceGenerator
  Quick Malicious ClickOnceGenerator for Red Team
  ☆246Updated 3 years ago
• ryhanson / ExternalC2
  A library for integrating communication channels with the Cobalt Strike External C2 server
  ☆281Updated 6 years ago
• Mr-Un1k0d3r / PoisonHandler
  lateral movement techniques that can be used during red team exercises
  ☆265Updated 4 years ago
• FuzzySecurity / BlueHatIL-2020
  BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET
  ☆143Updated 4 years ago
• ramen0x3f / AggressorScripts
  ☆272Updated 2 years ago
• outflanknl / Excel4-DCOM
  PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
  ☆321Updated 5 years ago
• praetorian-inc / vulcan
  a tool to make it easy and fast to test various forms of injection
  ☆172Updated 5 years ago
• phackt / stager.dll
  Code from this article: https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/
  ☆170Updated 4 years ago
• johnjohnsp1 / Shellcode-Via-HTA
  How To Execute Shellcode via HTA
  ☆136Updated 6 years ago
• decoder-it / powershellveryless
  Constrained Language Mode + AMSI bypass all in one
  ☆153Updated 5 years ago
• mdsecactivebreach / PowerDNS
  PowerDNS: Powershell DNS Delivery
  ☆211Updated 6 years ago
• HarmJ0y / DAMP
  The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification
  ☆373Updated 5 years ago
• quickbreach / ExchangeRelayX
  An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.
  ☆301Updated 2 years ago
• leechristensen / Random
  Assorted scripts and one off things
  ☆261Updated 3 months ago
• r4wd3r / RID-Hijacking
  Windows RID Hijacking persistence technique
  ☆165Updated this week
• violentlydave / mkhtaccess_red
  Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…
  ☆167Updated 4 years ago
• outflanknl / Presentations
  Presentation material presented by Outflank team members at public events.
  ☆181Updated this week
• 001SPARTaN / aggressor_scripts
  A collection of useful scripts for Cobalt Strike
  ☆167Updated 3 months ago
• invokethreatguy / AggressorCollection
  Collection of awesome Cobalt Strike Aggressor Scripts. All credit due to the authors
  ☆147Updated 5 years ago
• cobbr / PSAmsi
  PSAmsi is a tool for auditing and defeating AMSI signatures.
  ☆386Updated 6 years ago
• b4rtik / ATPMiniDump
  Evading WinDefender ATP credential-theft
  ☆253Updated 4 years ago
• 0xbadjuju / WheresMyImplant
  A Bring Your Own Land Toolkit that Doubles as a WMI Provider
  ☆284Updated 6 years ago
• xorrior / raven
  CobaltStrike External C2 for Websockets
  ☆194Updated 5 years ago