Exploitation / Network PenTest
by do son · Published August 18, 2017 · Last modified November 4, 2024
luckystrike a PowerShell based generator of malicious .xls documents (soon to be .doc). All your payloads are saved into a database for easy retrieval & embedding into a new or...
WMI_Forensics This repository contains scripts used to find evidence in WMI repositories, specifically OBJECTS.DATA files located at: C:\WINDOWS\system32\wbem\Repository\OBJECTS.DATA C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Download CCM_RUA_Finder.py CCM_RUA_finder.py extracts SCCM software metering RecentlyUsedApplication logs from OBJECTS.DATA...
Web Information Gathering / WebApp PenTest
by do son · Published July 24, 2017 · Last modified November 4, 2024
PowerMeta PowerMeta searches for publicly available files hosted on various websites for a particular domain by using specially crafted Google, and Bing searches. It then allows for the download of...
PoshC2 PoshC2 is a proxy aware C2 framework used to aid penetration testers with red teaming, post-exploitation and lateral movement. PoshC2 is primarily written in Python3 and follows a modular...
Maintaining Access / Network PenTest
by do son · Published July 19, 2017 · Last modified August 4, 2017
ranger A tool to support security professionals access and interact with remote Microsoft Windows based systems. This project was conceptualized with the thought process, we did not invent the bow...
Information Gathering / Network PenTest
by do son · Published July 15, 2017 · Last modified November 4, 2024
Invoke-HostRecon Invoke-HostRecon runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance phase of an engagement. It gathers information about...
Bypass PowerShell execution policy by encoding ps script into bat file. Download Usage Tutorial
Network PenTest / Post Exploitation
by do son · Published June 26, 2017 · Last modified November 4, 2024
Invoke-Vnc executes a VNC agent in-memory and initiates a reverse connection, or binds to a specified port. Password authentication is supported. Execute agent remotely via WMI If you have authenticated...
Network PenTest / Post Exploitation
by do son · Published June 13, 2017 · Last modified November 4, 2024
PowerLessShell rely on MSBuild.exe to remotely execute PowerShell scripts and commands without spawing powershell.exe. To add another layer of crap the payload will copy msbuild.exe to something random and build...
In the domain environment, often need to use the command line management domain users, then you can use the Active Directory command line tools Dsquery.exe, or CSVE, and Ldifde, in...
Exploitation / Metasploit / Network PenTest
by do son · Published May 18, 2017 · Last modified November 4, 2024
Introduction Windows PowerShell is a command-line shell for Microsoft Windows that is used for system administration. It uses cmdlets (commandlets) that are .NET classes to perform administrative tasks, and can...
Network PenTest / Post Exploitation
by do son · Published May 8, 2017 · Last modified November 4, 2024
mimikittenz is a post-exploitation powershell tool that utilizes the Windows function ReadProcessMemory() in order to extract plain-text passwords from various target processes. mimikittenz can also easily extract other kinds of...
Support Securityonline.info site. Thanks!
