seahop
Red Teamer. Just out here creating some simple PoCs for red teamy things. Amateur coder. No best practices here.
United States
Pinned Repositories
CPP_XOR
getPIDIntegrity
Injection
mimiRust
All credits to: github.com/ThottySploity/mimiRust (Original author deleted account so I uploaded for community use)
patchETW
Function to patch ETW with syscalls
RemoteProcDLLInject
RemoteShellcodeInjection_XOR
SyscallProcScan
Syscall process scanner
titan
Titan: A generic user defined reflective DLL for Cobalt Strike
seahop's Repositories
seahop/Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
seahop/PortBender
TCP Port Redirection Utility
seahop/injdrv
proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
seahop/Malleable-C2-Profiles
Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Cobalt Strike 3.x.
seahop/spoofcheck
Simple script that checks a domain for email protections
seahop/RunPE-In-Memory
Run a Exe File (PE Module) in memory (like an Application Loader)
seahop/FOLIAGE
Experiment on reproducing Obfuscate & Sleep
seahop/oleviewdotnet
A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container
seahop/RedTeamCCode
Red Team C code repo
seahop/html-obfuscator
Easily obfuscate your html!
seahop/SharpWMI
SharpWMI is a C# implementation of various WMI functionality.
seahop/Dumpert
LSASS memory dumper using direct system calls and API unhooking.
seahop/MacShellSwift
Proof of concept MacOS post exploitation tool written in Swift. Designed as a POC for blue teams to build macOS detections. Author: Cedric Owens
seahop/MSBuildAPICaller
MSBuild Without MSBuild.exe
seahop/SharpView
C# implementation of harmj0y's PowerView
seahop/dll-manual-map
DLL Injector using manual map, written in C++
seahop/AggressiveGadgetToJScript
A Cobalt Strike Aggressor script to generate GadgetToJScript payloads
seahop/BOF-DLL-Inject
Manual Map DLL injection implemented with Cobalt Strike's Beacon Object Files.
seahop/Sharp-SMBExec
SMBExec C# module
seahop/SharpDllProxy
Retrieves exported functions from a legitimate DLL and generates a proxy DLL source code/template for DLL proxy loading or sideloading
seahop/DueDLLigence
seahop/Windows10-CustomKernelSigners
Load self-signed drivers without TestSigning or disable DSE. Transferred from https://github.com/DoubleLabyrinth/Windows10-CustomKernelSigners
seahop/DLL-Template
Simple skeleton for a CPP DLL
seahop/SharPersist
seahop/MemoryModule
Library to load a DLL from memory.
seahop/PE2HEX
PE executable to array of bytes converter
seahop/MemJect
Simple Dll injector loading from memory. Supports PE header and entry point erasure. Written in C99.
seahop/osx-re-101
A collection of resources for OSX/iOS reverse engineering.
seahop/VBA-RunPE
A VBA implementation of the RunPE technique or how to bypass application whitelisting.
seahop/UAC_Bypass_In_The_Wild
Windows 10 UAC bypass for all executable files which are autoelevate true .