healtheedom Goto Github PK

bloodhound-quickwin

Simple script to extract useful informations from the combo BloodHound + Neo4j

certipy

Tool for Active Directory Certificate Services enumeration and abuse

cobalt-arsenal

My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+

cobalt-strike

Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection

codecepticon

.NET/PowerShell/VBA Offensive Security Obfuscator

cs-situational-awareness-bof

Situational Awareness commands implemented using Beacon Object Files

cve-2023-4863

darkwidow

Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+BlockDll) mitigation policy on spawned process + PPID spoofing + Api resolving from TIB + API hashing

davrelayup

DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the default settings).

downloadtest

dpat

Domain Password Audit Tool for Pentesters

edr-preloader

An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer

evilginx2-ttps

Reverse engineered to remove IOCs, added Exchange Online Protection IP blacklist and bing-bot user-agent blocking, DNS configuration and notes on usage.

farmer

freeze

Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods

gamingserviceeop

inlineexecute-assembly

InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditional fork and run execute-assembly module

krbrelayup

KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).

mangle

Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs

msrpc-to-attack

A repository that maps commonly used attacks using MSRPC protocols to ATT&CK

mythic

A collaborative, multi-platform, red teaming framework

ntlmrelayx.py_to_exe

packmypayload

A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX

protectmytooling

Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts watermarking, IOCs collection & PE Backdooring. You feed it with your implant, it does a lot of sneaky things and spits out obfuscated executable.

random_c2_profile

Cobalt Strike random C2 Profile generator

snaffler

a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )

sourcepoint

SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.