sasqwatch's repositories
ViolentFungus-C2
Violent Fungus is a command and control (C2) software suite, providing red teams post-exploitation persistence and other juicy stuff. WIP.
AIL-framework
AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project
attack-surface-framework
Tool to discover external and internal network attack surface
Azur3Alph4
Azur3Alph4 is a PowerShell module that automates red-team tasks for ops on objective. This module situates in a post-breach (RCE achieved) position.
Detect-It-Easy
Program for determining types of files for Windows, Linux and MacOS.
DInvoke
Dynamically invoke arbitrary unmanaged code from managed code without PInvoke.
dnsmonster
Passive DNS Capture/Monitoring Framework
fibratus
A modern tool for the Windows kernel exploration and tracing
fltmc
Cooked fltMC
Huan
Encrypted PE Loader Generator
IPvSeeYou
Repository for the IPvSeeYou talk at Black Hat 2021
merlin
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
moneta
Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
Ninja
Open source C2 server created for stealth red team operations
NSGenCS
Extendable payload obfuscation and delivery framework
Octopus
Open source pre-operation C2 server based on python and powershell
PowerShx
Run Powershell without software restrictions.
PR0CESS
some gadgets about windows process and ready to use :)
red_team_attack_lab
Red Team Attack Lab for TTP testing & research
RemotePotato0
Just another "Won't Fix" Windows Privilege Escalation from User to Domain Admin.
ServiceMove-BOF
New lateral movement technique by abusing Windows Perception Simulation Service to achieve DLL hijacking code execution.
shad0w
A post exploitation framework designed to operate covertly on heavily monitored environments
SharpC2-1
Command and Control Framework written in C#.
SharpStrike
A Post exploitation tool written in C# uses either CIM or WMI to query remote systems.
SILENTTRINITY
An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
UACME
Defeating Windows User Account Control
unDefender
Killing your preferred antimalware by abusing native symbolic links and NT paths.
Whisker
Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.
xlsKami
Out-of-the-Box Tool to Obfuscate Excel XLS. Include Obfuscation & Hide for Cell Labels & BoundSheets