Pinned Repositories
C2concealer
C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
EDD
Enumerate Domain Data
Egress-Assess
Egress-Assess is a tool used to test egress data detection capabilities
EXCELntDonut
Excel 4.0 (XLM) Macro Generator for injecting DLLs and EXEs into memory.
EyeWitness
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
GraphStrike
Cobalt Strike HTTPS beaconing over Microsoft Graph API
Just-Metadata
Just-Metadata is a tool that gathers and analyzes metadata about IP addresses. It attempts to find relationships between systems within a large dataset.
PersistAssist
Fully modular persistence framework
WMImplant
This is a PowerShell based tool that is designed to act like a RAT. Its interface is that of a shell where any command that is supported is translated into a WMI-equivalent for use on a network/remote machine. WMImplant is WMI based.
WMIOps
This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.
Red Siege's Repositories
RedSiege/EyeWitness
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
RedSiege/C2concealer
C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
RedSiege/WMImplant
This is a PowerShell based tool that is designed to act like a RAT. Its interface is that of a shell where any command that is supported is translated into a WMI-equivalent for use on a network/remote machine. WMImplant is WMI based.
RedSiege/Egress-Assess
Egress-Assess is a tool used to test egress data detection capabilities
RedSiege/Just-Metadata
Just-Metadata is a tool that gathers and analyzes metadata about IP addresses. It attempts to find relationships between systems within a large dataset.
RedSiege/GraphStrike
Cobalt Strike HTTPS beaconing over Microsoft Graph API
RedSiege/WMIOps
This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.
RedSiege/EDD
Enumerate Domain Data
RedSiege/PersistAssist
Fully modular persistence framework
RedSiege/CIMplant
C# port of WMImplant which uses either CIM or WMI to query remote systems
RedSiege/AutoFunkt
Python script for automating the creation of serverless cloud redirectors from Cobalt Strike malleable C2 profiles
RedSiege/Jigsaw
Hide shellcode by shuffling bytes into a random array and reconstruct at runtime
RedSiege/AggressorAssessor
Aggressor scripts for phases of a pen test or red team assessment
RedSiege/jargon
RedSiege/DigDug
RedSiege/FunctionalC2
A small POC of using Azure Functions to relay communications. Feel free to add additional functionality beyond this POC!
RedSiege/What-The-F
This repo hosts a poc of how to execute F# code within an unmanaged process
RedSiege/SqlClient
POC for .NET mssql client for accessing database data through beacon
RedSiege/MiddleOut
A small .NET compression utility
RedSiege/Hasher
Hasher is designed to be a tool that allows you to quickly hash plaintext strings, or compare hashed values with a plaintext locally. Not meant to crack passwords, but designed for local checks.
RedSiege/Chromatophore
Utilities for obfuscating shellcode
RedSiege/rstools
RedSiege/RandomScripts
Scripts for public use that we've randomly written, or have updated from other people's work.
RedSiege/ProxmarkWrapper
A wrapper around the Proxmark3 client that will alert the user of specific events
RedSiege/CLM-Base64
This project provides Base64 encoding and decoding functionality to PowerShell within Constrained Language Mode
RedSiege/SharpCollectionTemplate
RedSiege/CredCheck
.NET wrapper around LogonUserA to test creds
RedSiege/Delta-Encoder
RedSiege/RansomwareTalks
code for ransomware talks
RedSiege/CUDA-Installation-Script
Quick and dirty installation script for CUDA drivers on Ubuntu 18.04 LTS to save a bit of time.