Pinned Repositories
Aggressor-Script
Collection of Aggressor Scripts for Cobalt Strike
AmsiScanBufferBypass
Bypass AMSI by patching AmsiScanBuffer
CsWhispers
Source generator to add D/Invoke and indirect syscall methods to a C# project.
MiscTools
Miscellaneous Tools
OST-C2-Spec
Open Source C&C Specification
SharpC2
Command and Control Framework written in C#
Sherlock
PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.
ThreatCheck
Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.
TikiTorch
Process Injection
Watson
Enumerate missing KBs and suggest exploits for useful Privilege Escalation vulnerabilities
rasta-mouse's Repositories
rasta-mouse/ThreatCheck
Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.
rasta-mouse/SharpC2
Command and Control Framework written in C#
rasta-mouse/OST-C2-Spec
Open Source C&C Specification
rasta-mouse/CsWhispers
Source generator to add D/Invoke and indirect syscall methods to a C# project.
rasta-mouse/DInvoke
Dynamically invoke arbitrary unmanaged code from managed code without P/Invoke.
rasta-mouse/process-inject-kit
Port of Cobalt Strike's Process Inject Kit
rasta-mouse/PPEnum
Simple BOF to read the protection level of a process
rasta-mouse/SCMUACBypass
rasta-mouse/SpawnWith
rasta-mouse/MinHook.NET
A C# port of the MinHook API hooking library
rasta-mouse/KerbApp
rasta-mouse/offensive-defence
rasta-mouse/PacketAlchemy
Playing with packets in C#
rasta-mouse/Covenant
Covenant is a collaborative .NET C2 framework for red teamers.
rasta-mouse/EDD
Enumerate Domain Data
rasta-mouse/PrettyPrompt
A cross-platform command line input library that provides syntax highlighting, autocompletion, history and multi-line input.
rasta-mouse/rastamask-vs
A SleepMask using BeaconGate
rasta-mouse/rust_syscalls
Single stub direct and indirect syscalling with runtime SSN resolving for windows.
rasta-mouse/injdrv
proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
rasta-mouse/LOLDrivers
Living Off The Land Drivers
rasta-mouse/SharpC2-Docs
rasta-mouse/InlineExecute-Assembly
InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditional fork and run execute-assembly module
rasta-mouse/MalSCCM
rasta-mouse/SharpSCCM
A C# utility for interacting with SCCM
rasta-mouse/SQLRecon
A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.
rasta-mouse/DGPOEdit
Disconnected GPO Editor - A Group Policy Manager launcher to allow editing of domain GPOs from non-domain joined machines
rasta-mouse/EyeWitness
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
rasta-mouse/InfoSec-Black-Friday
All the deals for InfoSec related software/tools this Black Friday
rasta-mouse/bof-vs
A Beacon Object File (BOF) template for Visual Studio
rasta-mouse/RunOF