warpedatom / OffsetInspectLinks
PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.
☆31Updated 3 weeks ago
Alternatives and similar repositories for OffsetInspect
Users that are interested in OffsetInspect are comparing it to the libraries listed below
Sorting:
- A python script that automates a C2 Profile build☆48Updated last month
- ☆36Updated 6 months ago
- template for developing custom C2 channels for Cobalt Strike using IAT hooks applied by a reflective loader.☆99Updated 2 weeks ago
- A professional Red Team / Pentest tool for assessing the external perimeter of a company in a complete "black box" mode (zero knowledge, …☆29Updated 2 months ago
- A portable C# utility for enumerating local and remote windows sessions☆55Updated 3 weeks ago
- Using Chromium-based browsers as a proxy for C2 traffic.☆140Updated last month
- Beacon Object File (BOF) port of DumpGuard for extracting NTLMv1 hashes from sessions on modern Windows systems.☆193Updated 3 weeks ago
- Remote service-staging tool built on Impacket, designed for BOF-style lateral movement workflows that lets you upload custom service load…☆119Updated last month
- PowerShell tool that shows how to read and write NTLM OWF values via samlib.dll.☆72Updated 3 months ago
- Windows Thread Pool Injection Havoc Implementation☆33Updated last year
- EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.☆172Updated 2 weeks ago
- ☆57Updated 7 months ago
- Automated script for obfuscating, rebranding and renaming the Havoc C2 Framework to evade AV/EDR and C2 hunters.☆46Updated 5 months ago
- Shellcode injection using the Windows Debugging API☆163Updated 3 weeks ago
- Utilizng an MCP Server to communicate with your C2☆86Updated 8 months ago
- Just another EDR killer☆85Updated last week
- ☆55Updated 7 months ago
- This C# tool sprays for admin access over the entire domain☆87Updated last month
- A tool to play with scheduled tasks on Windows, in Rust☆121Updated 2 months ago
- Modern PIC implant for Windows (64 & 32 bit)☆105Updated 6 months ago
- Remote DLL Injection with Timer-based Shellcode Execution☆152Updated 6 months ago
- .NET tool used to enrich RPC telemetry☆101Updated 7 months ago
- Lateral Movement as loggedon User via Speech Named Pipe COM & ISpeechNamedPipe + COM Hijacking☆135Updated 6 months ago
- Permanently disable EDRs as local admin☆125Updated last month
- Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…☆161Updated 3 months ago
- A small How-To on creating your own weaponized WSL file☆119Updated 6 months ago
- Proof of concept for Kerberos Armoring abuse.☆75Updated last month
- Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel☆59Updated 9 months ago
- Helps defenders find their WSUS configurations in the wake of CVE-2025-59287☆46Updated 3 months ago
- A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …☆163Updated 2 months ago