This is your work, valued

Rasta Mouse

Elite
@rasta-mouse

Sherlock. PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.

2k

Watson. Enumerate missing KBs and suggest exploits for useful Privilege Escalation vulnerabilities

1.7k

ThreatCheck. Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.

1.5k

TikiTorch. Process Injection

768

SharpC2. Command and Control Framework written in C#

433

AmsiScanBufferBypass. Bypass AMSI by patching AmsiScanBuffer

283

OST-C2-Spec. Open Source C&C Specification

281

MiscTools. Miscellaneous Tools

270

Crystal-Loaders. A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike

232

CsWhispers. Source generator to add D/Invoke and indirect syscall methods to a C# project.

194

process-inject-kit. Port of Cobalt Strike's Process Inject Kit

193

Aggressor-Script. Collection of Aggressor Scripts for Cobalt Strike

172

DInvoke. Dynamically invoke arbitrary unmanaged code from managed code without P/Invoke.

171

EWSToolkit. Abusing Exchange via EWS

153

PPEnum. Simple BOF to read the protection level of a process

123

SpawnWith. C++

112

RuralBishop. D/Invoke port of UrbanBishop

108

SCMUACBypass. C++

106

ExternalC2.NET. .NET implementation of Cobalt Strike's External C2 Spec

89

GadgetHunter. Find jmp gadgets for call stack spoofing.

84

Fork-n-Run. C#

73

MinHook.NET. A C# port of the MinHook API hooking library

55

CollectorService. C#

54

Rosplant. C#

53

AsyncNamedPipes. Send and receive messages over Named Pipes asynchronously.

39

pwnlift. Easy peasy file uploads

37

KerbApp. HTML

32

Invoke-LoginPrompt. Invokes a Windows Security Login Prompt and outputs the clear text password.

25

SQL-BOF. Library of BOFs to interact with SQL servers

23

AsyncSockets. Example of async client/server sockets in .NET 5

17

PacketAlchemy. Playing with packets in C#

15

Mjolnir. Shell

14

offensive-defence. HTML

14

AMSITrigger. The Hunt for Malicious Strings

13

Covenant. Covenant is a collaborative .NET C2 framework for red teamers.

13

OffensiveCSharp. Collection of Offensive C# Tooling

13

SharpRDP. Remote Desktop Protocol .NET Console Application for Authenticated Command Execution

12

McAfeeForOutlook. Beef hook OWA / Outlook

12

EncryptedKeyExchange. C#

11

EDD. Enumerate Domain Data

10

CobaltStrike_OpenBeacon. Fully functional, from-scratch alternative to the Cobalt Strike Beacon (red teaming tool), offering transparency and flexibility for security professionals and enthusiasts.

10

SharpSploit. SharpSploit is a .NET post-exploitation library written in C#

8

CVE-2018-19320. Exploiting ring0 memcpy-like functionality to disable Driver Signing Enforcement (DSE)

7

BOF-PE. An example reference design for a proposed BOF PE

6

KaynLdr. KaynLdr is a Reflective Loader written in C/ASM

6

SQLRecon. A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.

5

rust_syscalls. Single stub direct and indirect syscalling with runtime SSN resolving for windows.

5

Titanis. Windows protocol library, including SMB and RPC implementations, among others.

5

Rubeus. Trying to tame the three-headed dog.

4

InlineExecute-Assembly. InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditional fork and run execute-assembly module

4

CVE-2021-44228-Apache-Log4j-Rce. Apache Log4j 远程代码执行

4

SharpC2-Docs. Python

4

FindFrontableDomains. Search for potential frontable domains

4

CoreSploit. Initial Commit of Coresploit

4

rastamouse.me. HTML

3

KaynStrike. URDL for CS

3