Entropy-z

Oblivion 悪's starred repositories

trufflehog

Find, verify, and analyze leaked credentials

Language:GoAGPL-3.015239 169 620

shad0w

A post exploitation framework designed to operate covertly on heavily monitored environments

Language:CMIT2021 61 45

MicroBurst

A collection of scripts for assessing Microsoft Azure security

Language:PowerShellNOASSERTION1978 57 22

EDR-Telemetry

This project aims to compare and evaluate the telemetry of various EDR products.

Language:Python1474 54 29

CarbonCopy

A tool which creates a spoofed certificate of any online website and signs an Executable for AV Evasion. Works for both Windows and Linux

Language:PythonApache-2.01284 55 14

BokuLoader

A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!

Language:CMIT1236 26 12

RustRedOps

🦀 | RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust

Language:RustMIT1090 16 1

SourcePoint

SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.

Language:Go1011 18 14

ThreadStackSpoofer

Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation from scanners and analysts.

Language:C++MIT997 28 1

BestEdrOfTheMarket

Little user-mode AV/EDR evasion lab for training & learning purposes

Language:C++MIT963 15 4

ShellcodeFluctuation

An advanced in-memory evasion technique fluctuating shellcode's memory protection between RW/NoAccess & RX and then encrypting/decrypting its contents

Language:C++MIT889 19 3

InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditional fork and run execute-assembly module

Language:C577 17 1

RedCloud-OS

RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers (CSPs)

Language:ShellGPL-2.0509 8 4

Hunt-Sleeping-Beacons

Aims to identify sleeping beacons

Language:C447 5 2

CrimsonEDR

Simulate the behavior of AV/EDR for malware development training.

Language:C435 8 1

Kerbeus-BOF

BOF for Kerberos abuse (an implementation of some important features of the Rubeus).

Language:C367 4 4

ThreadlessInject-BOF

BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released at BSides Cymru 2023.

Language:CMIT360 5 2

CallStackMasker

A PoC implementation for dynamically masking call stacks with timers.

Language:C++242 40

rust_bof

Cobalt Strike Beacon Object Files (BOFs) written in rust with rust core and alloc.

Language:Rust234 9 1

CredBandit

Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that back through your already existing Beacon communication channel

Language:C230 30