mepher

mepher's Stars

• hakaioffsec/coffee

  A COFF loader made in Rust

  Language:Rust27443

• nickvourd/CS-Aggressor-Kit

  Homemade Aggressor scripts kit for Cobalt Strike

  427

• boku7/StringReaper

  Reaping treasures from strings in remote processes memory

  Language:C21318

• boku7/patchwerk

  BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)

  Language:C16517

• unkn0wn-r1d3r/EvilBurp

  Automated Evilginx phishlet creator Extension for Burpsuite

  Language:Python408

• StratumSecurity/ntlm-connector

  An implementation of Hyper's Connector trait that can authenticate to proxies using NTLM and works with or without TLS

  Language:Rust91

• Maldev-Academy/HellHall

  Performing Indirect Clean Syscalls

  Language:C51468

• NtDallas/KrakenMask

  Sleep obfuscation

  Language:C++20631

• grayhatkiller/SharpExShell

  SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.

  Language:C#6815

• NtDallas/sharp-execute

  Execute dotnet app from unmanaged process

  Language:C++7010

• caueb/Mockingjay

  Mockingjay process self injection POC

  Language:C297

• kozmer/aad-bofs

  AzureAD beacon object files

  Language:C11010

• Mayyhem/Maestro

  Abusing Intune for Lateral Movement over C2

  Language:C#32731

• secureworks/pytune

  Language:Python19413

• rasta-mouse/process-inject-kit

  Port of Cobalt Strike's Process Inject Kit

  Language:C++16723

• securifybv/BOFRyptor

  Language:Assembly12019

• C5Hackr/c_syscalls

  https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.

  Language:C305

• MythicAgents/Hannibal

  A Mythic Agent written in PIC C.

  Language:C17510

• NtDallas/Svartalfheim

  Stage 0

  Language:C++15329

• Mr-Un1k0d3r/SCShell

  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command

  Language:C1.5k243

• janoglezcampos/llvm-yx-callobfuscator

  LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.

  Language:C26831

• UmaRex01/SysWhispers3

  SysWhispers on Steroids - AV/EDR evasion via direct system calls.

  Language:Python2

• vi/websocat

  Command-line client for WebSockets, like netcat (or curl) for ws:// with advanced socat-like functions

  Language:Rust7.4k284

• joaoviictorti/rustclr

  Host CLR and run .NET binaries using Rust

  Language:Rust886

• CorentinJ/Real-Time-Voice-Cloning

  Clone a voice in 5 seconds to generate arbitrary speech in real-time

  Language:Python53.6k8.9k

• RVC-Project/Retrieval-based-Voice-Conversion-WebUI

  Easily train a good VC model with voice data <= 10 mins!

  Language:Python27.5k3.9k

• nativefier/nativefier

  Make any web page a desktop application

  Language:TypeScript35.1k2.2k

• CICADA8-Research/COMThanasia

  A set of programs for analyzing common vulnerabilities in COM

  Language:C++19634

• Leo4j/Invoke-SMBRemoting

  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement

  Language:PowerShell15925

• Ylianst/MeshCentral

  A complete web-based remote monitoring and management web site. Once setup you can install agents and perform remote desktop session to devices on the local network or over the Internet.

  Language:HTML4.7k619