PTF's repositories
AssemblyLoader
Various implementations for C# in memory execution. Assembly.Load() Assembly.LoadFile() AppDomain.ExecuteAssembly()
basic-c2
A basic c2 / agent.
bofhound
Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
C2concealer
C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
cs2modrewrite
Convert Cobalt Strike profiles to modrewrite scripts
DefenderCheck
Identifies the bytes that Microsoft Defender flags on.
DetectionLab
Automate the creation of a lab environment complete with security tooling and logging best practices
dns-update
python script to update DNS records to your public IP
EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
GOAD
game of active directory
PoshC2
A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
PoshC2_Core
Stage2-Core source code
PoshC2_Shellcode
Supporting projects for PoshC2
SharpDllProxy
Retrieves exported functions from a legitimate DLL and generates a proxy DLL source code/template for DLL proxy loading or sideloading
Wazuh-Rules
Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
WebMap
WebMap-Nmap Web Dashboard and Reporting
xeno-rat
Xeno-RAT is an open-source remote access tool (RAT) developed in C#, providing a comprehensive set of features for remote system management. Has features such as HVNC, live microphone, reverse proxy, and much much more!