burberryfly's repositories
windows-coerced-authentication-methods
A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.
pe_to_shellcode
Converts PE into a shellcode
SSMSPwd
SQL Server Management Studio(SSMS) saved password dumper
SCShell
Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
wmiexec-RegOut
Modify version of impacket wmiexec.py, get output(data,response) from registry, don't need SMB connection, also bypassing antivirus-software in lateral movement like WMIHACKER.
SharpDecryptPwd-1
SharpDecryptPwd source, To Decrypt Navicat,Xmanager,Filezilla,Foxmail,WinSCP,etc
PELoader
PE loader with various shellcode injection techniques
WMIHACKER
A Bypass Anti-virus Software Lateral Movement Command Execution Tool
PortBender
TCP Port Redirection Utility
Reptile
LKM Linux rootkit
SharpDecryptPwd
对密码已保存在 Windwos 系统上的部分程序进行解析,包括:Navicat,TeamViewer,FileZilla,WinSCP,Xmangager系列产品(Xshell,Xftp)。
xxe-ftp-server
xxe oob receive file via web and ftp server
libprocesshider
Hide a process under Linux using the ld preloader (https://sysdig.com/blog/hiding-linux-processes-for-fun-and-profit/)
impacket-examples-windows
The great impacket example scripts compiled for Windows