-
bootlicker Public
A generic UEFI bootkit used to achieve initial usermode execution. It works with modifications.
-
excel-press Public
Python script to compress VBA macro files
-
TransitionalPeriod Public
Forked from RobinFassinaMoschiniForks/TransitionalPeriodFormer Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits
C UpdatedJun 14, 2022 -
bootdoor Public
Forked from RobinFassinaMoschiniForks/bootdoorFormer UEFI Firmware Rootkit Replicating MoonBounce / ESPECTRE
C UpdatedJun 14, 2022 -
beacon Public
Forked from moonlight-junky/beaconFormer attempt at creating a independent Cobalt Strike Beacon
Python UpdatedJun 14, 2022 -
FOLIAGE-1 Public
Forked from moonlight-junky/FOLIAGEPublic variation of FOLIAGE ( original developer )
C UpdatedJun 14, 2022 -
TitanLdr-1 Public
Forked from moonlight-junky/TitanLdrPublic variation of Titan Loader
-
DeepSleep Public
Forked from thefLink/DeepSleepA variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC
-
minbeacon Public
Forked from th3k3ymak3r/minbeaconA work in progress of constructing a minimal http(s) beacon for Cobalt Strike.
C UpdatedApr 28, 2022 -
kapc_injector Public
Forked from veil-ivy/kapc_injectorkernel to user mode APC injector
C++ MIT License UpdatedMar 19, 2022 -
TitanLdr Public
Forked from kyleavery/TitanLdrCobalt Strike User Defined Reflective Loader (UDRL). Check branches for different functionality.
C UpdatedNov 22, 2021 -
FOLIAGE Public
Forked from y11en/FOLIAGEExperiment on reproducing Obfuscate & Sleep
C UpdatedMar 14, 2021 -
-
kekeo Public
Forked from gentilkiwi/kekeoA little toolbox to play with Microsoft Kerberos in C
C UpdatedDec 12, 2020 -
extract-mfg Public
Forked from iwleonards/extract-mfgExtract mfg.dat and AT&T root certs from BGW210 or NVG599
Python UpdatedOct 15, 2020 -
CarbonCopy Public
Forked from paranoidninja/CarbonCopyA tool which creates a spoofed certificate of any online website and signs an Executable for AV Evasion. Works for both Windows and Linux
-
rubeus2ccache Public
Forked from curi0usJack/rubeus2ccacheExtracts all base64 ticket data from a rubeus /dump file and converts the tickets to ccache files for easy use with other tools.
Python UpdatedOct 3, 2020 -
impacket_static_binaries Public
Forked from ropnop/impacket_static_binariesStandalone binaries for Linux/Windows of Impacket's examples
Python Other UpdatedOct 1, 2020 -
-
GhostLoader Public
Forked from TheWover/GhostLoaderGhostLoader - AppDomainManager - Injection - 攻壳机动队
-
-
-
DNSExfiltrator Public
Forked from Arno0x/DNSExfiltratorData exfiltration over DNS request covert channel
-
DNSDelivery Public
Forked from Arno0x/DNSDeliveryDNSDelivery provides delivery and in memory execution of shellcode or .Net assembly using DNS requests delivery channel.
PowerShell UpdatedOct 6, 2019 -
hid-iclass Public
Forked from h3mag/hid-iclassHID iClass key diversification script
Python UpdatedOct 5, 2019 -
sRDI Public
Forked from monoxgas/sRDIShellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode
PowerShell Other UpdatedOct 5, 2019 -
FacebookEnum Public
Facebook account enumeration using the forgotten password feature
-
-
netstub Public
Forked from freesoul/netstubCreate a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.
C++ UpdatedSep 29, 2018 -
PowerShell-Suite Public
Forked from FuzzySecurity/PowerShell-SuiteMy musings with PowerShell