fuzzlove
Follow
Stars
USB Army Knife – the ultimate close access tool for penetration testers and red teamers.
Tools and Techniques for Red Team / Penetration Testing
ScareCrow - Payload creation framework designed around EDR bypass.
POC tool to convert CobaltStrike BOF files to raw shellcode
A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters implemented by login pages like Microsoft and the use with Evilginx.
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
NucleiFuzzer is a robust automation tool designed for efficiently detecting web application vulnerabilities, including XSS, SQLi, SSRF, and Open Redirects, leveraging advanced scanning and URL enum…
AV/EDR evasion via direct system calls.
gsmith257-cyber / better-sliver
Forked from BishopFox/sliverAdversary Emulation Framework
venom - C2 shellcode generator/compiler/handler
Compile shellcode into an exe file from Windows or Linux.
Encodes a payload within a generated mock-CSS file
A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.
Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share th…
💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
This is a repository of resource about Malware techniques
DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.
Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"