TeamsPhisher. Send phishing messages and attachments to Microsoft Teams users
1.1kInline-Execute-PE. Execute unmanaged Windows executables in CobaltStrike Beacons
724MemFiles. A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk
477XLL_Phishing. XLL Phishing Tradecraft
441OSEP-Tools. C#
317DropSpawn_BOF. CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking
289zip_smuggling. Python3 utility for creating zip files that smuggle additional data for later extraction
273DNS_Tunneling. DNS Tunneling using powershell to download and execute a payload. Works in CLM.
233CVE-2023-36874_BOF. Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE
205Secure_Stager. An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution
195SilentHarvest_BOF. A Cobalt Strike BOF implementation of the SilentHarvest registry dumping technique
181KDStab. BOF combination of KillDefender and Backstab
167BeatRev. POC for frustrating/defeating Malware Analysts
154EventViewerUAC_BOF. Beacon Object File implementation of Event Viewer deserialization UAC bypass
133Mutants_Sessions_Self-Deletion. Writeup of Payload Techniques in C involving Mutants, Session 1 -> Session 0 migration, and Self-Deletion of payloads.
128enumhandles_BOF. C
127Enumprotections_BOF. A BOF to enumerate system process, their protection levels, and more.
125DSCourier_BOF. BOF POC of the DSCourier project / invoking WinGet via COM
89Cohab_Processes. A small Aggressor script to help Red Teams identify foreign processes on a host machine
86JumpSession_BOF. Beacon Object File allowing creation of Beacons in different sessions.
84lnk_generator. Small project to facilitate creation of .lnk payloads
83KillDefender_BOF. Beacon Object File implementation of pwn1sher's KillDefender
67Presentations. Slide decks and/or materials from conference presentations
56CS_Uploads_Tracker. Aggressor script add-in for CobaltStrike to track file uploads
48Proxy_Egress_Persistence. A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
34ThreadCPUAssignment_POC. A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread
33KillDefender. A small (Edited) POC to make defender useless by removing its token privileges and lowering the token integrity
31aggressor_snippets. A collection of random small Aggressor snippets that don't warrant their own repo
26Backstab_BOF. Beacon Object File implementation of Yaxser's Backstab
15Shoggoth. Shoggoth: Asmjit Based Polymorphic Encryptor
4Octoberfest7.
1