seahop

Red Teamer. Just out here creating some simple PoCs for red teamy things. Amateur coder. No best practices here.

United States

Pinned Repositories

CPP_XOR
Language:C++1 1 00
getPIDIntegrity
Language:C++1 1 01
Injection
Language:C++1 1 00
mimiRust
All credits to: github.com/ThottySploity/mimiRust (Original author deleted account so I uploaded for community use)
Language:Rust2 0 00
patchETW
Function to patch ETW with syscalls
Language:C2 1 00
RemoteProcDLLInject
Language:C++1 1 00
RemoteShellcodeInjection_XOR
Language:C++1 1 00
SyscallProcScan
Syscall process scanner
Language:C++4 1 00
titan
Titan: A generic user defined reflective DLL for Cobalt Strike
Language:C74 1 049

seahop's Repositories

seahop/Supernova
Real fucking shellcode encryption tool.
Language:Go1 0 01
seahop/API-Hashing
A basic exemple of the API-Hashing method used by Red Teamers but also by malwares developers in C++
seahop/arm64_macOS_Syscalls
Language:Assembly0 0
seahop/BokuLoader
Cobalt Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities. By: @0xBoku & @s4ntiago_p
Language:C1
seahop/BounceBack
↕️🤫 Stealth redirector for your red team operation security
Language:Go0 0
seahop/C2-Tool-Collection
A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.
Language:C
seahop/Click-Once-App-Domain-Injection
Click Once + App Domain
Language:C#0 0
seahop/ContainYourself
A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
Language:C++0 0
seahop/cookie-monster
BOF to steal browser cookies & credentials
Language:C0 0
seahop/CVE-2023-36874
CVE-2023-36874 PoC
Language:C++0 0
seahop/CVE-2023-36874_BOF
Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE
Language:C++0 0
seahop/Defender-Exclusions-Creator-BOF
seahop/EDRSandblast-GodFault
EDRSandblast-GodFault
Language:C0 0
seahop/HeaderLessPE
seahop/KBlast
Windows Kernel Offensive Toolset
Language:C++0 0
seahop/LatLoader
PoC module to demonstrate automated lateral movement with the Havoc C2 framework.
Language:C++0 0
seahop/LdrLockLiberator
For when DLLMain is the only way
Language:C0 0
seahop/Mockingjay_BOF
Cobalt Strike Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique
Language:C0 0
seahop/moonshine
Language:C++0 0
seahop/NetExec
The Network Execution Tool
Language:Python0 0
seahop/odin
odin c2
seahop/PoolParty
A set of fully-undetectable process injection techniques abusing Windows Thread Pools
seahop/Proxycalls
miscellaneous codes
Language:C++0 0
seahop/RandomTSScripts
Collection of random RedTeam scripts.
Language:C++0 0
seahop/SharpBlackout
Terminate AV/EDR leveraging BYOVD attack
Language:C#0 01
seahop/SharpKiller
Lifetime AMSI bypass by @ZeroMemoryEx ported to .NET Framework 4.8
Language:C#0 0
seahop/SimpleEDR
Simple EDR that injects a DLL into a process to place a hook on specific Windows API
1
seahop/Split
Apply a divide and conquer approach to bypass EDRs
seahop/tweetter
Simple Twitter Bot, made with Selenium and JavaScript.
seahop/Windows-Internals
Important notes and topics on my journey towards mastering Windows Internals