Repository navigation
lateral-movement
- Website
- Wikipedia
一个攻防知识库。A knowledge base for red teaming and offensive security.
Free copy of The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss.
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Dominate Active Directory with PowerShell.
mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socket reuse
Self-developed tools for Lateral Movement/Code Execution
Windows remote execution multitool
a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.
APT38 Tactic PoC for Stealing 0days from security researchers
Manipulating and Abusing Windows Access Tokens.
Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
Suricata rules for network anomaly detection
C++ WinRM API via Reflective DLL
This tool can be used during internal penetration testing to dump Windows credentials from an already-compromised host. It allows one to dump SYSTEM, SECURITY and SAM hives and once copied to the attacker machines provides option to delete these files to clear the trace.
.NET 4.0 Scheduled Job Lateral Movement
A set of instructions, command and techniques that help during an Active Directory Assessment.
Inject RDPThief into memory with PowerShell.
conduct lateral movement attack by leveraging unfiltered services display name to smuggle binaries as chunks into the target machine