trustedsec / auto_SettingContent-msLinks
This is a quick POC for using the Matt Nelson (enigma0x3) technique for generating a malicious .SettingContent-ms extension type for remote code execution. This automates generating an HTA downloader and embeds it in the SettingContent-ms file for you and starts Apache.
☆52Updated 7 years ago
Alternatives and similar repositories for auto_SettingContent-ms
Users that are interested in auto_SettingContent-ms are comparing it to the libraries listed below
Sorting:
- Cobalt Strike Field Manual - A quick reference for Windows commands that can be accessed in a beacon console.☆65Updated 7 years ago
- Includes 5 Known Application Whitelisting/ Application Control Bypass Techniques in One File.☆32Updated 8 years ago
- ☆83Updated 9 years ago
- A sample bot for Cobalt Strike 3☆22Updated 9 years ago
- Quick PoC I Wrote for Bypassing Next Gen AV Remotely for Pentesting☆41Updated 6 years ago
- A C# implementation of the PowerShell Empire Agent☆74Updated 6 years ago
- ☆76Updated 7 years ago
- Converts the output from Invoke-Kerberoast into hashcat format.☆32Updated 6 years ago
- Empire HTTP(S) C2 redirector setup script☆47Updated 6 years ago
- Powershell Persistence Locator☆66Updated 8 years ago
- When CactusTorch meets WebDavDelivery and obfuscation☆63Updated 7 years ago
- C# Targeted Attack Reconnissance Tools☆122Updated 4 years ago
- ☆58Updated 7 years ago
- Cobalt Strike Field Manual - A quick reference for Windows commands that can be accessed in a beacon console.☆46Updated 7 years ago
- InfoPath Phishing Repo Resource☆69Updated 7 years ago
- ☆41Updated 6 years ago
- A cobaltstrike script that integrates DDEAuto Attacks☆64Updated 7 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆76Updated 6 years ago
- ☆54Updated 6 years ago
- PowerAvails is a unit of collection of Powershell modules that help you get done many things☆119Updated 6 years ago
- Bash one-liner that will parse harmj0y's SharpRoast or Rebeus kerberoast into hashcat crack-able format.☆32Updated 6 years ago
- Collection of IronPython scripts and executables for penetration testing☆55Updated 6 years ago
- Pypykatz agent implemented in .NET☆86Updated 6 years ago
- Executes lateral movement through PowerPoint DCOM objects☆19Updated 7 years ago
- ☆110Updated 7 years ago
- New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.☆36Updated 7 years ago
- ☆94Updated 6 years ago
- ☆52Updated 11 years ago
- ☆19Updated 8 years ago
- Quick and dirty System (Power)Shell using NamedPipe impersonation.☆43Updated 8 years ago