GitHub is home to over 36 million developers working together. Join them to grow your own development teams, manage permissions, and collaborate on projects.
LSASS memory dumper using direct system calls and API unhooking.
A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.
A flask wsgi application that serves files with intelligence, good for serving conditional RedTeam payloads
Red Team's SIEM - easy deployable tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
Small scripts that make life better
PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
Automated deployment of Windows and Active Directory test lab networks. Useful for red and blue teams.
Code for blogpost: https://outflank.nl/blog/2018/10/25/building-resilient-c2-infrastructues-using-dns-over-https/
Clean public password dump files and store in ELK
POC for Cobalt Strike external C2
A realistic windows testlab deployment tool
Exploits developped by Outflank B.V. team members
PowerShell script for the Windows Speech interface
Example DLL to load from Windows NetShell