SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GPO) in order to compromise the objects that are controlled by…

C# 1,333 156 Updated Dec 15, 2020

sailay1996 / tokenx_privEsc

with metasploit

Python 63 20 Updated Apr 19, 2020

rsmudge / Malleable-C2-Profiles

Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Coba…

1,591 417 Updated May 18, 2021

rsmudge / ElevateKit

The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.

PowerShell 933 199 Updated Jun 22, 2020

invokethreatguy / AggressorCollection

Collection of awesome Cobalt Strike Aggressor Scripts. All credit due to the authors

PowerShell 152 40 Updated Jan 7, 2019

vysecurity / Aggressor-VYSEC

PowerShell 210 58 Updated Jan 30, 2019

offsecginger / AggressorScripts

Various Aggressor Scripts I've Created.

PowerShell 150 27 Updated Jan 1, 2022

anthemtotheego / SharpCradle

C# 281 56 Updated Dec 30, 2020

S3cur3Th1sSh1t / Amsi-Bypass-Powershell

This repo contains some Amsi Bypass methods i found on different Blog Posts.

2,176 332 Updated Nov 28, 2024

drk1wi / Modlishka

Modlishka. Reverse Proxy.

Go 5,331 944 Updated Feb 12, 2026

ionescu007 / wnfun

WNF Utilities 4 Newbies (WNFUN)

Python 106 16 Updated Dec 6, 2018

ustayready / CasperStager

PoC for persisting .NET payloads in Windows Notification Facility (WNF) state names using low-level Windows Kernel API calls.

C# 152 43 Updated Jun 3, 2019

sensepost / ruler

A tool to abuse Exchange services

Go 2,306 360 Updated Jun 10, 2024

sensepost / gowitness

🔍 gowitness - a golang, web screenshot utility using Chrome Headless

Go 4,332 431 Updated Apr 22, 2026

sensepost / reGeorg

The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.

Python 3,173 824 Updated Mar 6, 2025

outflanknl / RedELK

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

Python 2,645 394 Updated Apr 28, 2026

outflanknl / EvilClippy

A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.

C# 2,244 398 Updated Dec 27, 2023

Hackplayers / evil-winrm

The ultimate WinRM shell for hacking/pentesting

Ruby 5,398 680 Updated Jun 2, 2026

dxflatline / flatpipes

A TCP proxy over named pipes. Originally created for maintaining a meterpreter session over 445 for less network alarms.

C# 244 35 Updated Sep 13, 2021

d35ha / CallObfuscator

Obfuscate specific windows apis with different apis

C++ 1,021 177 Updated Feb 21, 2021

cobbr / SharpSploit

SharpSploit is a .NET post-exploitation library written in C#

C# 1,881 316 Updated Aug 12, 2021

djhohnstein / SharpWeb

.NET 2.0 CLR project to retrieve saved browser credentials from Google Chrome, Mozilla Firefox and Microsoft Internet Explorer/Edge.

C# 539 101 Updated Jan 5, 2019

Mr-Un1k0d3r / RedTeamCSharpScripts

C# Script used for Red Team

C# 719 139 Updated Nov 16, 2021

TheWover / donut

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

C 4,627 742 Updated Jul 8, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

attackdeveloper

Block or report attackdeveloper

Stars

AlessandroZ / LaZagne

gquere / pwn_jenkins

swisskyrepo / PayloadsAllTheThings

itm4n / VBA-RunPE

mvelazc0 / defcon27_csharp_workshop

hugsy / defcon_27_windbg_workshop

ReversecLabs / SharpGPOAbuse