vyrus001 / go-mimikatz
A wrapper around a pre-compiled version of the Mimikatz executable for the purpose of anti-virus evasion.
☆607Updated 2 years ago
Related projects: ⓘ
- Convert Cobalt Strike profiles to modrewrite scripts☆578Updated last year
- A script to randomize Cobalt Strike Malleable C2 profiles and reduce the chances of flagging signature-based detection controls☆431Updated 2 years ago
- Yet another shellcode runner consists of different techniques for evaluating detection capabilities of endpoint security solutions☆476Updated 3 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆994Updated 6 years ago
- Shellcode wrapper with encryption for multiple target languages☆432Updated 7 years ago
- PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as w…☆907Updated 3 months ago
- Some useful scripts for CobaltStrike☆842Updated 3 years ago
- Dump ntds.dit really fast☆365Updated 2 years ago
- Cobalt Strike kit for Lateral Movement☆640Updated 4 years ago
- It's a go variant of Hells gate! (directly calling windows kernel functions, but from Go!)☆482Updated last year
- Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut☆305Updated 2 years ago
- My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+☆1,029Updated last year
- C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.☆991Updated 2 months ago
- A native backdoor module for Microsoft IIS (Internet Information Services)☆530Updated 4 years ago
- ☆613Updated this week
- Cobalt Strike kit for Persistence☆462Updated 4 years ago
- SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.☆1,020Updated 5 months ago
- Aggressor scripts for use with Cobalt Strike 3.0+☆779Updated 2 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,385Updated last year
- New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.☆893Updated 6 years ago
- Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322☆347Updated 4 years ago
- The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.☆461Updated 2 years ago
- Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands☆960Updated 2 years ago
- Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation☆910Updated last year
- RottenPotato local privilege escalation from service account to SYSTEM☆640Updated 6 years ago
- Various Cobalt Strike BOFs☆557Updated last year
- Standalone binaries for Linux/Windows of Impacket's examples☆710Updated last year
- A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls o…☆1,054Updated last year
- Load shellcode into a new process☆755Updated 3 years ago
- mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socke…☆718Updated 3 years ago