Beast code in Giters

Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.

Language:PowerShellGPL-3.0633 16 7

SharpSystemTriggers

Collection of remote authentication triggers in C#

Language:C444 80

RemoteKrbRelay

Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework

Language:C#422 5 2

sshdHooker

One-click injection into the SSHD process to record and send the password for ssh login

Language:Shell394 7 8

🦫 | GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educational purpoeses only.

Language:GoUnlicense381 6 1

NativeDump

Dump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!)

Language:C#378 7 1

linux-pam-backdoor

Linux PAM Backdoor

Language:ShellMIT302 5 1

RogueSliver

A suite of tools to disrupt campaigns using the Sliver C2 framework.

Language:Python244 3 1

reverse-sourcemap

:telescope: Reverse engineering JavaScript and CSS sources from sourcemaps

Language:JavaScriptMIT231 20

shellcode-factory

shellcode 生成框架

Language:C++231 6 4

EDR-XDR-AV-Killer

Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver

Language:Go219 3 2

NtlmThief

Extracting NetNTLM without touching lsass.exe

Language:C++219 3 3

Magic_C2

红队 C2 框架，使用 No X Loader 技术。Red Team C2 Framework, using No X Loader technology.

Language:C++183 5 5

PECracker

针对PE文件的分离的攻防对抗工具，红队、研究者的好帮手。目前支持文件头伪装、证书区段感染。A no-kill confrontation tool for the separation of PE files, a good helper for red teams and researchers. Currently, file header spoofing and certificate segment infection are supported.

Language:GoMIT17500

Venoma

Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashing and custom indirect syscalls execution

Language:C++156 7 4

k8spider

Powerful+Fast+Low Privilege Kubernetes service discovery tools via kubernetes DNS service. Currently supported service ip-port BruteForcing / AXFR Domain Transfer Dump / Coredns WildCard Dump / Pod Verified IP discovery

Language:GoMIT120 1 8

ApexLdr

ApexLdr is a DLL Payload Loader written in C

Language:CMIT94 30

EndpointSearch

EndpointSearch 是一个探测云服务端点的扫描器。Endpoint Search is a sophisticated reconnaissance utility designed to discreetly identify and enumerate endpoints within cloud services.

Language:GoApache-2.063 20

PassiveAggression

Source code and examples for PassiveAggression

Language:C#MIT53 30

ChromeExtensionInstall

Silently Install Chrome Extension For Persistence

Language:C#4000

hidedump

Hidedump:a lsassdump tools that may bypass EDR

Language:C32 10

lzzbb

lzz's starred repositories

ILSpy

mkdocs-material

Mythic

PrivescCheck

dnsx

zpscan

GolangBypassAV

rogue_mysql_server

Misconfiguration-Manager