A collection of scripts I've written to help red and blue teams with malware persistence techniques.
-
Updated
May 30, 2018 - PowerShell
A collection of scripts I've written to help red and blue teams with malware persistence techniques.
Small and highly portable detection tests based on MITRE's ATT&CK.
Powershell script for automating Windows persistence using different techniques
cobaltstrike ms17-010 module and some other
some pentest scripts
Simple powershell script to find living off land binaries and scripts on a system.
A PowerShell module to deploy active directory decoy objects.
reverse socks tunneler with ntlm and proxy support
The Windows-RedTeam repository contains resources I have developed for Red Team exercises or Pentesting engagements in Windows environments.
A collection of data exfiltration scripts for Red Team assessments.
One line PS scripts that may come handy during your network assesment
SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS
PS1 script to clear Windows Event Log without wevtutil or Clear-EventLog
A PowerShell script to prevent Sysmon from writing its events
A PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.
The redteam-apache-toolkit is a repository of useful tools for redteam operators intended to be served by an Apache webserver for easy transfer to target machines.
Credsleaker allows an attacker to craft a highly convincing credentials prompt using Windows Security, validate it against the DC and in turn leak it via an HTTP request.
Send file over ICMP (reverse shell)
Add a description, image, and links to the redteam topic page so that developers can more easily learn about it.
To associate your repository with the redteam topic, visit your repo's landing page and select "manage topics."