t1b4n3 / TibaneC2Links
A lightweight Command and Control (C2) framework built for offensive security research and red teaming (Post Exploitation).
☆66Updated last week
Alternatives and similar repositories for TibaneC2
Users that are interested in TibaneC2 are comparing it to the libraries listed below
Sorting:
- A lightweight tool that injects a custom assembly proxy into a target process to silently bypass AMSI scanning by redirecting AmsiScanBuf…☆61Updated 7 months ago
- Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…☆120Updated 6 months ago
- Remote DLL Injection with Timer-based Shellcode Execution☆152Updated 5 months ago
- Smart keylogging capability to steal SSH Credentials including password & Private Key☆148Updated 9 months ago
- CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overfl…☆51Updated 11 months ago
- Collection of red team techniques.☆64Updated 8 months ago
- Convert your shellcode into an ASCII string☆125Updated 6 months ago
- 「⚠️」Performing a BYOVD on the truesight.sys driver☆44Updated last year
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆76Updated last year
- ☆56Updated 5 months ago
- We found a way to DLL sideload with cleanmgr.exe☆95Updated 10 months ago
- Enumerate active EDR's on the system☆148Updated 3 months ago
- PowerShell script to generate ShellCode in various formats☆46Updated last year
- A modification to fortra's CVE-2023-28252 exploit, compiled to exe☆54Updated last year
- POC of GITHUB simple C2 in rust☆52Updated 5 months ago
- Cobalt Strike module x loader x profile x wike / A public collection of open resources for Cobalt Strike (only legal use in Red Team and …☆98Updated 3 weeks ago
- Proof of Concept for CVE-2025-32756 - A critical stack-based buffer overflow vulnerability affecting multiple Fortinet products.☆102Updated 6 months ago
- Extract SAM and SYSTEM using Volume Shadow Copy (VSS) API. With multiple exfiltration options and XOR obfuscation☆231Updated this week
- A remote unauthenticated DOS POC exploit that targets the authentication implementation of Havoc.☆38Updated 2 years ago
- C++ Staged Shellcode Loader with Evasion capabilities.☆99Updated last year
- (MeetC2 a.k.a Meeting C2) - A framework abusing Google Calendar APIs.☆129Updated 3 months ago
- Create Anti-Copy DRM Malware☆69Updated last year
- Automated script for obfuscating, rebranding and renaming the Havoc C2 Framework to evade AV/EDR and C2 hunters.☆47Updated 4 months ago
- Automated .NET AppDomain hijack payload generation☆130Updated 10 months ago
- PfSense Stored XSS lead to Arbitrary Code Execution exploit☆49Updated 11 months ago
- Work, timer, and wait callback example using solely Native Windows APIs.☆88Updated last year
- this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)☆83Updated 2 years ago
- A fucking real shellcode loader with a GUI. Work-in-Progress.☆81Updated 6 months ago
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆126Updated last year
- Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise☆103Updated 2 years ago