SV1's repositories
AzureC2Relay
AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Cobalt Strike Malleable C2 profile.
BadAssMacros
BadAssMacros - C# based automated Malicous Macro Generator.
BetterXencrypt
A better version of Xencrypt.Xencrypt it self is a Powershell runtime crypter designed to evade AVs.
bloodhound-quickwin
Simple script to extract useful informations from the combo BloodHound + Neo4j
build_a_phish
Ansible playbook to deploy a phishing engagement
cobalt-arsenal
My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
cook
A customizable wordlist and password generator.
CredPhish
CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.
CVE-2021-1675
Impacket implementation of CVE-2021-1675
jarm_randomizer
This tool was open sourced as part of JARM Randomizer: Evading JARM Fingerprinting for HiTB Amsterdam 2021.
msspray
Password attacks and MFA validation against various endpoints in Azure and Office 365
NET-Obfuscate
Obfuscate ECMA CIL (.NET IL) assemblies to evade Windows Defender AMSI
PEzor
Open-Source PE Packer
PortBender
TCP Port Redirection Utility
PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
random_c2_profile
Cobalt Strike random C2 Profile generator
RedTeamCCode
Red Team C code repo
RosFuscator
YouTube/Livestream project for obfuscating C# source code using Roslyn
ScareCrow
ScareCrow - Payload creation framework designed around EDR bypass.
ScareCrow-CobaltStrike
Cobalt Strike script for ScareCrow payloads
SharpTransactedLoad
Load .net assemblies from memory while having them appear to be loaded from an on-disk location.
SharpWebServer
Red Team oriented C# Simple HTTP & WebDAV Server with Net-NTLM hashes capture functionality
SocksProxyServer-Plugin
Socks Proxy Server Plugin for Invoke-SocksProxy
ThirdEye
Weaponizing CLRvoyance for Post-Ex .NET Execution
TokenTactics
Azure JWT Token Manipulation Toolset
UCantSeeM3
Hiding your process in ProcessHacker,Task Manager,etc by patching NtQuerySystemInformation
updog
Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.