CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.

A collection of data exfiltration scripts for Red Team assessments.

This repo contains my own Ducky/BadUSB scripts, related PowerShell scripts and other Flipper Zero related stuff.

GraveDigger will search a linux system for files of interest, then compress and encrypt said files for exfiltration.

A simple script to demonstrate data exfiltration using the ggwave API creating ultrasound audio.

A tool to abuse the current opened session of outlook to exfilitrate data through it.

📎 Proof of concept to copy files over RDP connections

A PowerShell script for helping to find vulnerable settings in AD Group Policy.

A PowerShell tool for backing up and exporting KeePass databases to a specified endpoint with GZip compression.

A simple powershell script to exfiltrate wifi passwords using discord.

A stealthy data exfiltration and covert channel tool that uses encrypted ICMP echo request packets to transmit files securely over networks.

wifi-to-dropbox-exfil

A pair of PowerShell scripts for transferring files using ping. Uses encryption, supports resuming, and works with big (1GB+) files.

Automatically exfiltrate AD user credentials

basic PowerShell malware. some old, some new. Mostly used with a BadUSB tool

PowerShell PoC for DNS-based data exfiltration