Lucene search
K

15 matches found

GithubExploit
GithubExploit
added 2026/04/13 11:53 a.m.126 views

Decepticon

⚡ Decepticon — Autonomous Multi-Agent Offensive Security !L...

5.8AI score
Exploits0
GithubExploit
GithubExploit
added 2026/03/30 12:51 p.m.124 views

kexploitbinary

DarkSword Red Team Framework Framework Python com CLI para en...

5.9AI score
Exploits0
GithubExploit
GithubExploit
added 2026/03/10 10:43 p.m.240 views

rami-kali-MCP

Red Team MCP Server MCP Model Context Protocol server that...

6AI score
Exploits0
GithubExploit
GithubExploit
added 2026/02/23 4:26 a.m.200 views

tempest-c2

⚡ Tempest C2 Framework Advanced Post-Exploitation & Comma...

5.8AI score
Exploits0
Kitploit
Kitploit
added 2023/09/23 11:30 a.m.51 views

HTMLSmuggler - HTML Smuggling Generator And Obfuscator For Your Red Team Operations

The full explanation what is HTML Smuggling may be found here. The primary objective of HTML smuggling is to bypass network security controls, such as firewalls and intrusion detection systems, by disguising malicious payloads within seemingly harmless HTML and JavaScript code. By exploiting the...

7AI score
Exploits0References7
Pen Test Partners Blog
Pen Test Partners Blog
added 2022/10/13 5:48 a.m.88 views

MS Enterprise app management service RCE. CVE-2022-35841

TL;DR A remote command execution and local privilege escalation vulnerability has been fixed by Microsoft as part of September’s patch Tuesday. The vulnerability, filed under CVE-2022-35841, affects the Enterprise App Management Service which handles the installation of enterprise applications...

0.1AI score0.02599EPSS
Exploits0
Penetration Testing Lab
Penetration Testing Lab
added 2022/01/17 11:25 a.m.39 views

Domain Persistence – Machine Account

Machine accounts play a role in red team operations as in a number of techniques are utilized for privilege escalation, lateral movement and domain escalation.… Continue reading - Domain Persistence - Machine Account...

4AI score
Exploits0
Kitploit
Kitploit
added 2021/10/18 11:30 a.m.29 views

ImpulsiveDLLHijack - C# Based Tool Which Automates The Process Of Discovering And Exploiting DLL Hijacks In Target Binaries

C based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can later be weaponized during RedTeam Operations to evade EDR's. 1. Methodological Approach : The tool basically acts on automating following stages performed for...

7.6AI score
Exploits0References1
Gitee
Gitee
added 2021/07/26 2:11 p.m.7 views

Red-Teaming-Toolkit

This repository is an offensive tool for Red Teaming/Adversary Simulation. It contains a collection of open source and commercial tools that aid in red team operations. The primary target product/service or framework is not explicitly stated, but the tools are designed to be used in various stage...

8AI score
Exploits0
The Hacker News
The Hacker News
added 2021/06/11 8:17 a.m.48 views

Live Cybersecurity Webinar — Deconstructing Cobalt Strike

Organizations' cybersecurity capabilities have improved over the past decade, mostly out of necessity. As their defenses get better, so do the methods, tactics, and techniques malicious actors devise to penetrate their environments. Instead of the standard virus or trojan, attackers today will...

0.2AI score
Exploits0
Kitploit
Kitploit
added 2021/03/29 11:30 a.m.90 views

Boomerang - A Tool To Expose Multiple Internal Servers To Web/Cloud

Boomerang is a tool to expose multiple internal servers to web/cloud using HTTP+TCP Tunneling. The Server will expose 2 ports on the Cloud. One will be where tools like proxychains can connect over socks, another will be for the agent to connect. The agent can be executed on any internal host. Th...

7.4AI score
Exploits0References1
Securelist
Securelist
added 2020/11/11 10:0 a.m.70 views

Targeted ransomware: it’s not just about encrypting your data!

When we talk about ransomware, we need to draw a line between what it used to be and what it currently is. Why? Because nowadays ransomware is not just about encrypting data – its primarily about data exfiltration. After that, its about data encryption and leaving convincing proof that the attack...

7.4AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2020/06/11 5:0 p.m.66 views

Blue teams helping red teams: A tale of a process crash, PowerShell, and the MITRE ATT&CK evaluation

In September 2019, MITRE evaluated Microsoft Threat Protection MTP and other endpoint security solutions. The ATT&CK evaluation lasted for three days, with a professional red team from MITRE emulating many advanced attack behaviors used by the nation-state threat group known as YTTRIUM APT29. Aft...

6.8AI score
Exploits0
Gitee
Gitee
added 2020/02/14 11:51 p.m.6 views

PowerTools

This repository is an offensive tool for PowerShell exploitation. It contains a collection of scripts that utilize a common pattern to host a script on a PowerShell webserver, invoke the IEX download cradle to download/execute the target code and post the results back to the server, and then...

7.2AI score
Exploits0
Penetration Testing Lab
Penetration Testing Lab
added 2019/10/07 8:11 a.m.79 views

Persistence – New Service

Services in a Windows environment can lead to privilege escalation if these are not configured properly or can be used as a persistence method. Creating a new service requires Administrator level privileges and it is not considered the stealthier of persistence techniques. However in red team...

3.9AI score
Exploits0
Rows per page
Query Builder