0xSV1

SV1's repositories

SharpC2

.NET C2 Framework Proof of Concept

GPL-3.0300

NetLoader

Loads any C# binary in mem, patching AMSI and bypassing Windows Defender

Language:C#1 10

APT06202001

Applied Purple Teaming - Infrastructure, Threat Optics, and Continious Improvement - June 6, 2020

Language:HTML000

Abuses the Shared Logon Session ID Issue (Described [here](https://www.tiraniddo.dev/2020/04/sharing-logon-session-little-too-much.html) by the awesome James Forshaw) To Achieve System From NetworkService. Can be used as a "getsystem" as well

000

breaking-and-pwning-apps-and-servers-aws-azure-training

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

Language:CSSMIT010

Chameleon

Chameleon: A tool for evading Proxy categorisation

000

Chimera

Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

Language:PowerShell000

CovenantTasks

Source for tasks I have used with Covenant

Language:C#000

CS-Situational-Awareness-BOF

Language:CGPL-2.0000

DKMC

DKMC - Dont kill my cat - Malicious payload evasion tool

NOASSERTION000

domainhunter

Checks expired domains for categorization/reputation and Archive.org history to determine good candidates for phishing and C2 domain names

BSD-3-Clause000

Ghost-In-The-Logs

Evade sysmon and windows event logging

Language:CMIT000

GhostBuild

GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects

BSD-3-Clause000

gscript

framework to rapidly implement custom droppers for all three major operating systems

AGPL-3.0000

impacket

Temporary Impacket Fork for Contributing and Sharing Our Knowledge about Windows

Language:PythonNOASSERTION000

Invoke-Sharpcradle

Load C# Code straight to memory

Language:PowerShellBSD-3-Clause000

malleable-c2

Cobalt Strike Malleable C2 Design and Reference Guide

GPL-3.0000

petaqc2

Petaq - Purple Team Command & Control Server

Language:C#MIT000

PlumHound

Bloodhound for Blue and Purple Teams

GPL-3.0000

PoC-in-GitHub

📡PoC auto collect from GitHub.

000

ProcessInjection-1

This program is designed to demonstrate various process injection techniques

Language:C#GPL-3.0000

redteam

Red Team Scripts by d0nkeys (ex SnadoTeam)

Language:PowerShellMIT000

SharpAppLocker

C# port of the Get-AppLockerPolicy PS cmdlet

Language:C#000

SharpMove

.NET Project for performing Authenticated Remote Execution

Language:C#GPL-3.0000

SharpSploit

SharpSploit is a .NET post-exploitation library written in C#

Language:C#BSD-3-Clause000

SharpStay

.NET project for installing Persistence

Language:C#GPL-3.0000

Stormspotter

Azure Red Team tool for graphing Azure and Azure Active Directory objects

MIT000

Zolom

C# Executable with embedded Python that can be used reflectively to run python code on systems without Python installed

Language:C#000

0xSV1

SV1's repositories

SharpC2

NetLoader

APT06202001

BetterSafetyKatz

BloodHoundQueries

bof-NetworkServiceEscalate

breaking-and-pwning-apps-and-servers-aws-azure-training

Chameleon

Chimera

CovenantTasks

CS-Situational-Awareness-BOF

DKMC

domainhunter

Ghost-In-The-Logs

GhostBuild

gscript

impacket

Invoke-Sharpcradle

malleable-c2

petaqc2

PlumHound

PoC-in-GitHub

ProcessInjection-1

redteam

SharpAppLocker

SharpMove

SharpSploit

SharpStay

Stormspotter

Zolom