Flangvik

Team Lead @KovertNO

Kovert ASNorway

Pinned Repositories

AMSI.fail
C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.
Language:C#350 10 364
AzureC2Relay
AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Cobalt Strike Malleable C2 profile.
Language:C#204 5 346
BetterSafetyKatz
Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime patches signatures and uses SharpSploit DInvoke to PE-Load into memory.
Language:C#785 15 3108
CobaltBus
Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus
Language:C#223 6 044
DeployPrinterNightmare
C# tool for installing a shared network printer abusing the PrinterNightmare bug to allow other network machines easy privesc!
Language:C#178 7 030
NetLoader
Loads any C# binary in mem, patching AMSI + ETW.
Language:C#765 20 4138
SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
2.1k 36 33314
SharpDllProxy
Retrieves exported functions from a legitimate DLL and generates a proxy DLL source code/template for DLL proxy loading or sideloading
Language:C#680 9 382
SharpProxyLogon
C# POC for CVE-2021-26855 aka ProxyLogon, supports the classically semi-interactive web shell as well as shellcode injection
Language:C#237 6 441
TeamFiltration
TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts
Language:C#992 11 38109

Flangvik's Repositories

Flangvik/SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
2.1k 36 33314
Flangvik/TeamFiltration
TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts
Language:C#992 11 38109
Flangvik/NetLoader
Loads any C# binary in mem, patching AMSI + ETW.
Language:C#765 20 4138
Flangvik/AMSI.fail
C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.
Language:C#350 10 364
Flangvik/CobaltBus
Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus
Language:C#223 6 044
Flangvik/DeployPrinterNightmare
C# tool for installing a shared network printer abusing the PrinterNightmare bug to allow other network machines easy privesc!
Language:C#178 7 030
Flangvik/ObfuscatedSharpCollection
Attempt at Obfuscated version of SharpCollection
164 6 017
Flangvik/Bobber
Bounces when a fish bites - Evilginx database monitoring with exfiltration automation
Language:Python135 1 29
Flangvik/SharpExfiltrate
Modular C# framework to exfiltrate loot over secure and trusted channels.
Language:C#123 3 035
Flangvik/SharpAppLocker
C# port of the Get-AppLockerPolicy PS cmdlet
Language:C#96 2 017
Flangvik/ADCSPwn
A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.
Language:C#41 1 03
Flangvik/collector
Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
Language:Python20 1 11
Flangvik/CobaltStuff
15 2 02
Flangvik/WAMBam
Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post
Language:C#6 0 0
Flangvik/Ethical-Hacking-101-Cheat-Sheet
Cheat Sheet High School Student
5 1 0
Flangvik/ForgeCert
"Golden" certificates
Language:C#5 0 0
Flangvik/yetAnotherObfuscator
C# obfuscator that bypass windows defender
Language:C#5 0 02
Flangvik/evilgophish
evilginx2 + gophish
Language:Go4 0 06
Flangvik/statistically-likely-usernames
Wordlists for creating statistically likely username lists for use in password attacks and security testing
4 0 01
Flangvik/evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
Language:Go3 0 0
Flangvik/SharpC2
Command and Control Framework written in C#.
Language:C#3 0 01
Flangvik/kerbrute
A tool to perform Kerberos pre-auth bruteforcing
Language:Go2 0 0
Flangvik/TokenStomp
C# implementation of the token privilege removal flaw discovered by @GabrielLandau/Elastic
Language:C#2 0 0
Flangvik/parley
Tree of Attacks (TAP) Jailbreaking Implementation
Language:Python1 0 0
Flangvik/smartbrute
Password spraying and bruteforcing tool for Active Directory Domain Services
Language:Python1 0 0
Flangvik/AggressorScripts
Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources
Language:C#0 0
Flangvik/impacket
Impacket is a collection of Python classes for working with network protocols.
Language:Python0 01
Flangvik/PetitPotam
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
Language:C0 0
Flangvik/Rubeus
Trying to tame the three-headed dog.
Language:C#
Flangvik/SharpC2-Docs