maculatum Goto Github PK

aggressor_script_examples

This repository contains tips, tricks, and examples of aggressor script functions. The intent is to share bite size examples that can be used in other scripts.

at-ps

Adversary Tactics - PowerShell Training

bloodhound

Six Degrees of Domain Admin

bloodhoundqueries

CompassSecurity BloodHound utilities

bof-vs

A Beacon Object File (BOF) template for Visual Studio

bof_template

A Beacon Object File (BOF) is a compiled C program, written to a convention that allows it to execute within a Beacon process and use internal Beacon APIs. BOFs are a way to rapidly extend the Beacon agent with new post-exploitation features.

bofhound

Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel

chronology

SpecterOps Historical Records

cloud-proxy

cloud-proxy creates multiple DO droplets and then starts local socks proxies using SSH

cloudproxy

Hide your scrapers IP behind the cloud. Provision proxy servers across different cloud providers to improve your scraping success.

cobalt_sync

Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+

crackhound

cs-remote-ops-bof

cs-situational-awareness-bof

Situational Awareness commands implemented using Beacon Object Files

cs_coffloader

domaincheck

DomainCheck is designed to assist operators with monitoring changes related to their domain names. This includes negative changes in categorization, VirusTotal detections, and appearances on malware blacklists. DomainCheck currently works only with NameCheap.

elevatekit

The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.

ghostwriter

The SpecterOps project management and reporting engine

ghostwriter-documentation

The Ghostwriter wiki content from https://ghostwriter.wiki

ghostwriter_cli

Golang CLI binary used for installing and managing Ghostwriter

ipc-research

Inter-Process Communication Mechanisms

malleable-c2-profiles

Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Cobalt Strike 3.x.

mythic

A collaborative, multi-platform, red teaming framework

mythic_sync

Automated activity logging utility for Mythic C2 v3.0+ with Ghostwriter v3.0+

nemesis

An offensive data enrichment pipeline

ohmyzsh

🙃 A delightful community-driven (with 2,200+ contributors) framework for managing your zsh configuration. Includes 300+ optional plugins (rails, git, macOS, hub, docker, homebrew, node, php, python, etc), 140+ themes to spice up your morning, and an auto-update tool so that makes it easy to keep up with the latest updates from the community.

presentations

SpecterOps Presentations

protectmytooling

Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts watermarking, IOCs collection & PE Backdooring. You feed it with your implant, it does a lot of sneaky things and spits out obfuscated executable.

pyldapsearch

Tool for issuing manual LDAP queries which offers bofhound compatible output

redelk

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.