Stars
Abusing impersonation privileges through the "Printer Bug"
DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYSTEM privileges. This script has been customized from the ori…
Covenant is a collaborative .NET C2 framework for red teamers.
Python version of the C# tool for "Shadow Credentials" attacks
KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.
.NET, PE, & Raw Shellcode Packer/Loader Written in Nim
Situational Awareness commands implemented using Beacon Object Files
Starkiller is a Frontend for PowerShell Empire.
BC-SECURITY / Empire
Forked from EmpireProject/EmpireEmpire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.
This repo contains some Amsi Bypass methods i found on different Blog Posts.
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
PowerSploit - A PowerShell Post-Exploitation Framework
Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.
dnSpyEx / dnSpy
Forked from dnSpy/dnSpyUnofficial revival of the well known .NET debugger and assembly editor, dnSpy
Active Directory and Internal Pentest Cheatsheets
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
Note during self-study OSEP course from the Internet.
hackinaggie / OSEP-Tools-v2
Forked from Octoberfest7/OSEP-ToolsA marriage between Octoberfest7/OSEP-Tools and chvancooten/OSEP-Code-Snippets with some improvements/additions
Various notes I have compiled during the OSEP PEN-300 course.
Writing custom backdoor payloads with C# - Defcon 27 Workshop
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
Perfect DLL Proxying using forwards with absolute paths.