trustedsec / specula

Related projects: ⓘ

• dazzyddos / HSC24RedTeamInfra
  Slides and Codes used for the workshop Red Team Infrastructure Automation
  ☆169Updated 5 months ago
• synacktiv / GPOddity
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆259Updated 11 months ago
• yoda66 / MAAS
  Malware As A Service
  ☆117Updated 6 months ago
• deepinstinct / NoFilter
  ☆290Updated last year
• MaLDAPtive / Invoke-Maldaptive
  MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.
  ☆167Updated last month
• RedSiege / jargon
  ☆114Updated 2 months ago
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆193Updated 3 months ago
• badsectorlabs / sccm-http-looter
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)
  ☆150Updated last month
• RedefiningReality / Cobalt-Strike
  Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection
  ☆233Updated 4 months ago
• trustedsec / The_Shelf
  Retired TrustedSec Capabilities
  ☆218Updated last week
• Hacker-Hermanos / C2_INFRA_WORKSHOP_DEFCON32_RED_TEAM_VILLAGE
  C2 Infrastructure Automation
  ☆82Updated last month
• Flangvik / Bobber
  Bounces when a fish bites - Evilginx database monitoring with exfiltration automation
  ☆155Updated 3 months ago
• mandiant / ccmpwn
  ☆174Updated 5 months ago
• mlcsec / Graphpython
  Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
  ☆119Updated last month
• ACE-Responder / RogueSliver
  A suite of tools to disrupt campaigns using the Sliver C2 framework.
  ☆245Updated last year
• Tylous / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆87Updated last year
• garrettfoster13 / pre2k
  ☆262Updated this week
• MzHmO / NtlmThief
  Extracting NetNTLM without touching lsass.exe
  ☆223Updated 9 months ago
• Yaxxine7 / ASRepCatcher
  Make everyone in your VLAN ASRep roastable
  ☆114Updated 3 months ago
• Orange-Cyberdefense / LinikatzV2
  linikatz is a tool to attack AD on UNIX
  ☆134Updated 11 months ago
• Helixo32 / NimBlackout
  Kill AV/EDR leveraging BYOVD attack
  ☆301Updated last year
• SecuraBV / Timeroast
  Timeroasting scripts by Tom Tervoort
  ☆176Updated last year
• Flangvik / QRucible
  Python utility that generates "imageless" QR codes in various formats
  ☆88Updated last month
• WKL-Sec / GregsBestFriend
  GregsBestFriend process injection code created from the White Knight Labs Offensive Development course
  ☆171Updated last year
• werdhaihai / AtlasReaper
  A command-line tool for reconnaissance and targeted write operations on Confluence and Jira instances.
  ☆239Updated last year
• ZephrFish / Bloodhound-CustomQueries
  Custom Queries - Brought Up to BH4.1 syntax
  ☆217Updated last year
• Leo4j / Invoke-SessionHunter
  Retrieve and display information about active user sessions on remote computers. No admin privileges required.
  ☆126Updated last month
• ricardojoserf / TrickDump
  Dump lsass using only NTAPIS running 3 programs to create 3 JSON and 1 ZIP file... and generate the Minidump later!
  ☆277Updated this week
• Tylous / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆156Updated 11 months ago
• fortalice / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆293Updated 6 months ago