zeronetworks / cornershot
Amplify network visibility from multiple POV of other hosts
☆302Updated 11 months ago
Alternatives and similar repositories for cornershot:
Users that are interested in cornershot are comparing it to the libraries listed below
- Persistence by writing/reading shellcode from Event Log☆369Updated 2 years ago
- ☆446Updated 2 years ago
- Proof-of-concept tools for my AD Forest trust research☆208Updated 9 months ago
- Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon☆325Updated 2 years ago
- Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation)☆272Updated 3 years ago
- Pass the Hash to a named pipe for token Impersonation☆299Updated last year
- official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)☆230Updated 2 years ago
- AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Co…☆218Updated 4 years ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆206Updated 2 weeks ago
- MS-FSRVP coercion abuse PoC☆287Updated 3 years ago
- A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.☆434Updated 3 years ago
- Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain☆346Updated 3 years ago
- Collection of beacon BOF written to learn windows and cobaltstrike☆346Updated 2 years ago
- Python implementation for PetitPotam☆197Updated 3 years ago
- ☆512Updated 3 years ago
- Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types☆381Updated last week
- Check for LDAP protections regarding the relay of NTLM authentication☆487Updated 4 months ago
- Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus☆226Updated 3 years ago
- A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.☆437Updated last year
- Office 365 and Exchange Enumeration☆184Updated 5 years ago
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆386Updated last year
- Python tool to Check running WebClient services on multiple targets based on @leechristensen☆270Updated 3 years ago
- Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…☆453Updated 2 years ago
- Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation☆208Updated 3 years ago
- Collection of remote authentication triggers in C#☆478Updated 10 months ago
- ☆384Updated 7 months ago
- ☆365Updated 3 years ago
- Recon-AD, an AD recon tool based on ADSI and reflective DLL’s☆325Updated 5 years ago
- Enumerate Domain Data☆325Updated last year
- Creating a repository with all public Beacon Object Files (BoFs)☆468Updated last year