Pinned Repositories
CACTUSTORCH
CACTUSTORCH: Payload Generation for Adversary Simulations
Chameleon
Chameleon: A tool for evading Proxy categorisation
com_inject
DragonCastle
A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
Farmer
LinkedInt
LinkedInt: A LinkedIn scraper for reconnaissance during adversary simulation
o365-attack-toolkit
A toolkit to attack Office365
PowerDNS
PowerDNS: Powershell DNS Delivery
RDPInception
A proof of concept for the RDP Inception Attack
SharpShooter
Payload Generation Framework
mdsecactivebreach's Repositories
mdsecactivebreach/SharpShooter
Payload Generation Framework
mdsecactivebreach/o365-attack-toolkit
A toolkit to attack Office365
mdsecactivebreach/CACTUSTORCH
CACTUSTORCH: Payload Generation for Adversary Simulations
mdsecactivebreach/LinkedInt
LinkedInt: A LinkedIn scraper for reconnaissance during adversary simulation
mdsecactivebreach/Chameleon
Chameleon: A tool for evading Proxy categorisation
mdsecactivebreach/RDPInception
A proof of concept for the RDP Inception Attack
mdsecactivebreach/Farmer
mdsecactivebreach/DragonCastle
A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
mdsecactivebreach/PowerDNS
PowerDNS: Powershell DNS Delivery
mdsecactivebreach/com_inject
mdsecactivebreach/ParallelSyscalls
mdsecactivebreach/firewalker
mdsecactivebreach/SharpPack
An Insider Threat Toolkit
mdsecactivebreach/sitrep
mdsecactivebreach/WMIPersistence
WMI Event Subscription Persistence in C#
mdsecactivebreach/Browser-ExternalC2
External C2 Using IE COM Objects
mdsecactivebreach/CloneVault
mdsecactivebreach/Execute-GithubAssembly-Aggressor
Aggressor Script to Execute Assemblies from Github
mdsecactivebreach/RegistryStrikesBack
mdsecactivebreach/lambda-webbugs
A proof of concept for delivering webbugs via AWS lambda
mdsecactivebreach/ANGRYPUPPY
Bloodhound Attack Path Automation in CobaltStrike
mdsecactivebreach/SharpAltiris
mdsecactivebreach/CVE-2018-4878
mdsecactivebreach/CVE-2023-26258-ArcServe
mdsecactivebreach/PleasantTools
Tools for Attacking Pleasant Password Server
mdsecactivebreach/TakeATest
mdsecactivebreach/Invoke-ProcessScan
Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
mdsecactivebreach/morphHTA
morphHTA - Morphing Cobalt Strike's evil.HTA
mdsecactivebreach/CVE-2017-8759
CVE-2017-8759 - A vulnerability in the SOAP WDSL parser.
mdsecactivebreach/Aggressor-VYSEC