aus-mate's starred repositories
linux-kernel-exploitation
A collection of links related to Linux kernel security and exploitation
C2-Tool-Collection
A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.
ProtectMyTooling
Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts watermarking, IOCs collection & PE Backdooring. You feed it with your implant, it does a lot of sneaky things and spits out obfuscated executable.
DripLoader
Evasive shellcode loader for bypassing event-based injection detection (PoC)
Stracciatella
OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at startup
rootkit-rs
Rusty Rootkit - Windows Kernel Rookit in Rust (Codename: Eagle)
ScareCrow-CobaltStrike
Cobalt Strike script for ScareCrow payloads intergration (EDR/AV evasion)
RecycledGate
Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll
BofAllTheThings
Creating a repository with all public Beacon Object Files (BoFs)
SharpImpersonation
A User Impersonation tool - via Token or Shellcode injection
NTLMRelay2Self
An other No-Fix LPE, NTLMRelay2Self over HTTP (Webdav).
XLL_Phishing
XLL Phishing Tradecraft
SharpEventPersist
Persistence by writing/reading shellcode from Event Log
SharpShares
Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain
AsStrongAsFuck
A console obfuscator for .NET assemblies.
COM-Hunter
COM Hijacking VOODOO
PersistAssist
Fully modular persistence framework
Shellcode-Loader
Open repository for learning dynamic shellcode loading (sample in many programming languages)
ObjCShellcodeLoader
macOS shellcode loader written in Objective-C