tyranid / blackhat-usa-2022-demos
Demos for the Blackhat USA 2022 talk "Taking Kerberos to the Next Level"
☆258Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for blackhat-usa-2022-demos
- One day based on https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.html☆393Updated last year
- Quick python utility I wrote to turn HTTP requests from burp suite into Cobalt Strike Malleable C2 profiles☆366Updated last year
- WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement☆361Updated 2 years ago
- A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.☆441Updated 7 months ago
- ☆401Updated last year
- Persistence by writing/reading shellcode from Event Log☆366Updated 2 years ago
- An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memor…☆346Updated last year
- Escalate Service Account To LocalSystem via Kerberos☆389Updated last year
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆317Updated 3 months ago
- UDRL for CS☆415Updated 11 months ago
- A Sliver GUI Client☆293Updated last year
- C# Lsass parser☆280Updated 3 years ago
- POC for CVE-2022-1388☆230Updated 2 years ago
- ☆498Updated 2 years ago
- COM Hijacking VOODOO☆257Updated 8 months ago
- XLL Phishing Tradecraft☆391Updated 2 years ago
- From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller☆398Updated 2 years ago
- FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads☆374Updated 2 years ago
- ☆441Updated last year
- Shellcode launcher for AV bypass☆214Updated 10 months ago
- PoC for CVE-2022-21971 "Windows Runtime Remote Code Execution Vulnerability"☆306Updated 2 years ago
- A Payload Loader Designed With Advanced Evasion Features☆498Updated 2 years ago
- ☆821Updated 3 weeks ago
- A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) wit…☆492Updated 7 months ago
- POC for CVE-2022-39952☆266Updated last year
- ☆400Updated 10 months ago
- A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk☆426Updated 4 months ago
- CVE-2022-26134 Proof of Concept☆157Updated 2 years ago