Octoberfest7

Pinned Repositories

CVE-2023-36874_BOF
Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE
Language:C++205 5 027
DNS_Tunneling
DNS Tunneling using powershell to download and execute a payload. Works in CLM.
Language:Python218 9 135
DropSpawn_BOF
CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking
Language:C226 6 029
Inline-Execute-PE
Execute unmanaged Windows executables in CobaltStrike Beacons
Language:C657 17 3103
KDStab
BOF combination of KillDefender and Backstab
Language:C166 6 037
MemFiles
A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk
Language:C451 12 163
OSEP-Tools
Language:C#242 5 091
Secure_Stager
An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution
Language:C183 4 028
TeamsPhisher
Send phishing messages and attachments to Microsoft Teams users
Language:Python1.1k 10 27138
XLL_Phishing
XLL Phishing Tradecraft
Language:C413 8 079

Octoberfest7's Repositories

Octoberfest7/TeamsPhisher
Send phishing messages and attachments to Microsoft Teams users
Language:Python1.1k 10 27138
Octoberfest7/Inline-Execute-PE
Execute unmanaged Windows executables in CobaltStrike Beacons
Language:C657 17 3103
Octoberfest7/MemFiles
A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk
Language:C451 12 163
Octoberfest7/XLL_Phishing
XLL Phishing Tradecraft
Language:C413 8 079
Octoberfest7/OSEP-Tools
Language:C#242 5 091
Octoberfest7/DropSpawn_BOF
CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking
Language:C226 6 029
Octoberfest7/DNS_Tunneling
DNS Tunneling using powershell to download and execute a payload. Works in CLM.
Language:Python218 9 135
Octoberfest7/CVE-2023-36874_BOF
Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE
Language:C++205 5 027
Octoberfest7/Secure_Stager
An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution
Language:C183 4 028
Octoberfest7/KDStab
BOF combination of KillDefender and Backstab
Language:C166 6 037
Octoberfest7/BeatRev
POC for frustrating/defeating Malware Analysts
Language:C154 7 022
Octoberfest7/EventViewerUAC_BOF
Beacon Object File implementation of Event Viewer deserialization UAC bypass
Language:C132 8 030
Octoberfest7/enumhandles_BOF
Language:C125 2 016
Octoberfest7/Mutants_Sessions_Self-Deletion
Writeup of Payload Techniques in C involving Mutants, Session 1 -> Session 0 migration, and Self-Deletion of payloads.
Language:C124 4 120
Octoberfest7/Enumprotections_BOF
A BOF to enumerate system process, their protection levels, and more.
Language:C116 2 07
Octoberfest7/Cohab_Processes
A small Aggressor script to help Red Teams identify foreign processes on a host machine
Language:C84 6 014
Octoberfest7/JumpSession_BOF
Beacon Object File allowing creation of Beacons in different sessions.
Language:C78 4 013
Octoberfest7/KillDefender_BOF
Beacon Object File implementation of pwn1sher's KillDefender
Language:C++66 6 015
Octoberfest7/lnk_generator
Small project to facilitate creation of .lnk payloads
Language:Python63 3 013
Octoberfest7/Presentations
Slide decks and/or materials from conference presentations
56 2 05
Octoberfest7/CS_Uploads_Tracker
Aggressor script add-in for CobaltStrike to track file uploads
36 3 06
Octoberfest7/KillDefender
A small (Edited) POC to make defender useless by removing its token privileges and lowering the token integrity
Language:C++32 3 08
Octoberfest7/Proxy_Egress_Persistence
A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
32 2 07
Octoberfest7/aggressor_snippets
A collection of random small Aggressor snippets that don't warrant their own repo
23 3 06
Octoberfest7/Backstab_BOF
Beacon Object File implementation of Yaxser's Backstab
Language:C14 2 03
Octoberfest7/Shoggoth
Shoggoth: Asmjit Based Polymorphic Encryptor
Language:C++5 1 0
Octoberfest7/Octoberfest7
1 2 01
Octoberfest7/SC_DEMO
Language:C