RalfHacker
Follow
Stars
Obfuscation library based on C++20 and metaprogramming
Beacon Object File (BOF) port of DumpGuard for extracting NTLMv1 hashes from sessions on modern Windows systems.
A Bof to dump domain credentials via DRSGetNCChanges, Created for use with the Adaptix C2.
mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socket reuse
Third iteration of Lamperl, a Linux agent for the Adaptix C2 being developed for a blog post.
Collection of many ldap bofs for domain enumeration and privilege escalation. Created for use with the Adaptix C2.
Agent for AdaptixC2 with focus in evasion, capability and malleable.
Beacon Object File (BOF) that utilizes the Early Bird Cryo Injection technique in order to perform shellcode injection through frozen job objects.
Collection of BOFs created for red team/adversary engagements. Created to be small and interchangeable, for quick recon or eventing.
PowerShell agent for AdaptixC2
This repo contains a valid ready to run Dockefile to be used in 1C cluster RCE technique
Grab yer ldapsearch logs from AdaptixC2 a little easier.
A Jetbain extension for AXS (AdaptixC2 Scripting Language) with intelligent autocompletion and syntax highlighting.
C2 Agent fully PIC for Mythic with advanced evasion capabilities, dotnet/powershell/shellcode/bof memory executions, lateral moviments, pivot and more.
A little tool to play with Windows security
A WiFi security auditing software mainly based on aircrack-ng tools suite
A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.
A tool to remotely detect unusual sessions opened on windows machines using RPC
Collection of UAC Bypass Techniques Weaponized as BOFs
Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations
Collection of Beacon Object Files (BOF) for Cobalt Strike