exfiltration

There are 11 repositories under exfiltration topic.

• GTFOBins / GTFOBins.github.io

  GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

  post-exploitationlinuxunixbypassgtfobinsbinariesreverse-shellbind-shellexfiltrationredteamblueteam
  Language:HTML 10176

• fulldecent / system-bus-radio

  Transmits AM radio on computers without radio transmitting hardware.

  radioequipmentsoftware-defined-radioexfiltrationsecuritytransmissiontransmitterairgaplow-levelradiationcommunicationcommunication-protocolelectrical-engineeringengineeringmicroprocessor
  Language:C 6141

• TryCatchHCF / Cloakify

  CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

  cipherdata-exfiltrationhackingpentestingexfiltrationsteganographycryptographydlpav-evasionprivacysecuritysecurity-toolsinfosecred-teampentestpentest-toolhacking-toolhacking-toolspentest-toolsstego
  Language:Python 1500

• TryCatchHCF / PacketWhisper

  PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

  hackinghacking-toolsred-teampentestingexfiltrationsecurity-toolssteganographycryptographydlpdata-exfiltrationpentest-toolsecurity
  Language:Python 609

• Spacial / awesome-csirt

  Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

  securitycsirtawesomeawesome-listmalware-analysisthreat-intelligencepentestingexfiltrationsecure-programmingcvepocreverse-engineeringexploits
  Language:C 392

• SitinCloud / Owlyshield

  Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact).

  cybersecurityantivirusbehavior-analysisransomwareedrmachine-learningmalwaremalware-analysismalware-researchthreat-huntingcommand-and-controlexfiltrationimpact
  Language:Rust 372
• Lucifer

  Skiller9090 / Lucifer

  A Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security Life

  cybersechackingpentestingpentest-toolhacking-toolpythoncybersecuritycyber-securitysecurity-toolsmodulesmodularhacking-frameworkframeworkautomationautomation-frameworkprivilege-escalationenumerationexfiltrationsecurity
  Language:Python 342

• AleksaMCode / WiFi-password-stealer

  Simple Windows and Linux keystroke injection tool that exfiltrates stored WiFi data (SSID and password).

  exfiltrate-dataexfiltrationhackinghacking-toolmalwarerubber-duckyrubberduckysecurityhacking-toolsinfosecsecurity-toolsecurity-toolsraspberry-piraspberry-pi-picowifi-passwordswifi-stealercybersecuritypython-hackingwifi-passwordduckyscript
  Language:PowerShell 326

• mazen160 / xless

  The Serverless Blind XSS App

  blind-xssbrowser-exploitationexfiltrationout-of-bandserverlessxss
  Language:JavaScript 322

• tokyoneon / CredPhish

  CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.

  shellreverse-shellsocial-engineeringpenetration-testinginformation-securitykali-linuxkalikali-scriptsbypass-antivirusantivirus-evasionamsibackdooroffensive-securitydnsdns-serverexfiltrationc2
  Language:PowerShell 278

• Zarcolio / flipperzero

  This repo contains my own Ducky/BadUSB scripts, related PowerShell scripts and other Flipper Zero related stuff.

  awarenessbadusbduckyscriptoffensive-securitypowershellredteamingpasswordspincodesduckyhackingflipperflipperzerobadusb-payloadsducky-payloadsducky-scriptflipper-zeroexfilexfiltrationbadkbgenerator
  Language:PowerShell 214

• Flangvik / Bobber

  Bounces when a fish bites - Evilginx database monitoring with exfiltration automation

  aadentraidevilginxexfiltrationo365pentestingphishingpythonroadtools
  Language:Python 134

• LyndLabs / DNS-DriveBy

  Drive-by data exfiltration using open WiFi networks & DNS requests

  data-exfiltrationdnscanarytokensdns-exfiltrationesp8266exfiltrationwardriving
  Language:C++ 127

• t0thkr1s / gtfo

  Search for Unix binaries that can be exploited to bypass system security restrictions.

  linuxbinarypost-exploitationbypassgtfobinsreverse-shellbind-shellexfiltrationredteamblueteamprivilege-escalationgtfounix-binariespythonoscpsecurity-tools
  Language:Python 124

• anfractuosity / ultrasonicnetworking

  Ultrasonic networking - Transmitting TCP/IP via Ultrasound

  ultrasoundnetworkingtcpgnuradioexfiltration
  Language:Python 110

• leonjza / qrxfer

  Transfer files from Air gapped machines using QR codes

  exfiltrationqrcode
  Language:Python 98

• christophetd / IPv6teal

  :wave: Stealthy data exfiltration via IPv6 covert channel

  red-teamingexfiltrationcovert-channelipv6
  Language:Python 94

• 1N3 / PowerExfil

  A collection of data exfiltration scripts for Red Team assessments.

  redteamredteamingdataexfilpowershellhackingtoolsexfiltrationscriptscriptstool
  Language:PowerShell 92

• DamonMohammadbagher / NativePayload_Image

  Transferring Backdoor Payloads with BMP Image Pixels

  steganographybypass-antivirusexfiltrationantivirus-evasionantivirusredteampentesting
  Language:Shell 80

• leonjza / dnsfilexfer

  File transfer via DNS

  exfiltrationdns
  Language:Python 68

• tasooshi / exfilkit

  Data exfiltration utility for testing detection capabilities

  security-toolsexfiltrationpentestingred-teamcticybersecuritydata-exfiltration
  Language:Python 57

• DamonMohammadbagher / NativePayload_BSSID

  Transferring Backdoor Payload by BSSID and Wireless traffic

  wifiwifi-networkexfiltrationbackdoorantivirusantivirus-evasionredteampentesting
  Language:Shell 56

• AmgdGocha / DriveFS-Sleuth

  DriveFS Sleuth is a Python tool that automates investigating Google Drive File Stream disk artifacts, the tool has been developed based on research that has been performed by mounting different scenarios and noting down the changes in the Google Drive File Stream disk artifacts.

  drive-file-streamexfiltrationforensicsgoogle-driveunauthorized-application
  Language:Python 53

• anfractuosity / musicplayer

  Play audio files (.wav) via the system bus of your computer and pickup with an AM radio

  system-busaudiorfradioamexfiltrationpdmmusicplayer
  Language:C 52

• ekiojp / circo

  Cisco Implant Raspberry Controlled Operations

  raspberrypiexfiltrationpentesting
  Language:Python 50

• OlivierLaflamme / DNSWho

  transmit cs beacon (shellcode) over self-made dns to avoid anti-kill and AV

  redteamdnscobaltstrikebypass-antivirusexfiltrationshellcodebeaconevasion-attackevasionantivirus-evasionbypass-av
  Language:C# 50

• ekiojp / dfex

  DNS File EXfiltration

  post-exploitationdnsfileexfiltration
  Language:Python 45

• drivebadger / drivebadger

  Open source platform for covert data exfiltration operations, supporting all device types: computers, servers, mobile phones, tablets, pen drives and photo cameras.

  exfiltrationexfiltratorexfiltratekali-linuxpolicesecuritylinuxusbusb-driveluks-encryptionrsyncsystemdforensicsforensics-investigationspolice-officersevidenceraspberry-piraspberrypiraspbianlaw-enforcement
  Language:Shell 44

• reveng007 / DareDevil

  Stealthy Loader-cum-dropper/stage-1/stager targeting Windows10

  dropperloaderstage1stagerbeaconingstage2reflective-loadingcovert-channelexfiltrationremote-process-injectionobfuscationenvironmental-keying-factorhacktoberfest
  Language:C# 37

• rverton / gxss

  Blind XSS service alerting over slack or email

  blind-xssexfiltrationpentestingsecurityxss
  Language:Go 33

• sourcefrenchy / certexfil

  Exfiltration based on custom X509 certificates

  exfiltrationredteampentestingredteamingleakagepayloadcertificatecertsmtlspem
  Language:Go 25

• TheBugFather / Advanced-Keylogger

  Gathers network information, then simultaniously logs keys, takes screenshots, takes webcam pictures, and records mic.

  pythonencryptionexfiltrationinformation-gatheringkeylogger
  Language:Python 25

• r1vs3c / searchbins

  Offline command line tool that searches for GTFOBins binaries that can be used to bypass local security restrictions in misconfigured systems.

  bash-scriptbinariesbind-shellblueteambypassexfiltrationgtfobinslinuxpost-exploitationredteamreverse-shellunixprivilege-escalation
  Language:Shell 24

• jaceddd / text_watermark

  Allows invisible watermarking of text and invisible encrypted messages. Uses 17 different invisible characters as HEX + delimiter. Includes encoder, decoder, spammer and other tools‬⁨⁠⁢⁠⁩⁠​⁠⁩⁠​‎⁠‎­⁠‎⁠⁩‍⁠⁠​⁩⁠‎⁠​⁨⁠​⁠⁠​‬⁠​‬⁠⁩⁠‬⁠‎⁠‍⁠​‬⁠‎⁠⁨⁠‎‍⁠.

  steganographysteganography-applicationsteganography-encodingsteganography-librarysteganography-toolszero-width-spaceciphercryptographydata-hidingdigital-watermarkingexfiltration
  Language:JavaScript 23

• anfractuosity / timeshifter

  Transmissions over time based covert channels across a network. Modifies the time intervals between packets to transmit data.

  covert-channeltransmissionpacketsexfiltrationdata-exfiltrationtimingsteganographypacket-interval
  Language:C 22
• exodus

  cpl / exodus

  Data exfiltration using DNS

  dnsexfiltrationdns-clientdns-serverdns-exfiltrationdata-extractionfirewall-bypasssecurity-tools
  Language:Go 21