21 open source projects by outflanknl

Ps-Tools, an advanced process monitoring toolkit for offensive operations

Small scripts that make life better

Recon-AD, an AD recon tool based on ADSI and reflective DLL’s

Zipper, a CobaltStrike file and folder compression utility.

A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

Example DLL to load from Windows NetShell

.NET implementation of Get-GPPPassword. Retrieves the plaintext password and other information for accounts pushed through Group Policy Preferences.

A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or process handles.

POC for Cobalt Strike external C2

A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.

LSASS memory dumper using direct system calls and API unhooking.

Automated deployment of Windows and Active Directory test lab networks. Useful for red and blue teams.

PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)

A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.

Tool to create hidden registry keys.

Agressor script that lists available Cobalt Strike beacon commands and colors them based on their type

A PowerShell script to parse the docx/docm file format and update the template location.

Clean public password dump files and store in ELK

PoC to demonstrate how CLR ETW events can be tampered.

Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF)