evilgrade
ScareCrow
evilgrade | ScareCrow | |
---|---|---|
4 | 11 | |
1,250 | 2,552 | |
0.0% | - | |
0.0 | 0.0 | |
over 2 years ago | 9 months ago | |
Perl | Go | |
- | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
evilgrade
-
Intel Quietly Resumes Russia Support, Unblocks Software Downloads
Insecure or compelled malicious auto-updates are an unappreciated threat.
- Some information and advice about DDoS, from someone who was there during #opPayback
- List of resources
-
Awesome Penetration Testing
evilgrade - Modular framework to take advantage of poor upgrade implementations by injecting fake updates.
ScareCrow
- ScareCrow v5 - a rewrite of the framework with new features, IoC's removed & new evasion techniques added.
- Red team engagement help!
- ScareCrow – Payload creation framework designed around EDR bypass
- Some information and advice about DDoS, from someone who was there during #opPayback
- List of resources
- ScareCrow is a payload creation framework for generating loaders for the use of side loading (not injection) into a legitimate Windows process (bypassing Application Whitelisting controls). Once the DLL loader is loaded into memory, utilizing a technique to flush an EDR’s hook out the system DLLs ru
-
ScareCrow - Payload Creation Framework Designed Around EDR Bypass
https://github.com/optiv/ScareCrow
- optiv/ScareCrow - Payload creation framework designed around EDR bypass
- GitHub - optiv/ScareCrow: ScareCrow - Payload creation framework designed around EDR bypass.
- ScareCrow - Payload creation framework designed around EDR bypass
What are some alternatives?
GHunt - 🕵️♂️ Offensive Google framework.
InlineWhispers - Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF)
faraday - Open Source Vulnerability Management Platform
sliver - Adversary Emulation Framework
LinkedInt - LinkedIn Recon Tool
maskphish - Introducing "URL Making Technology" to the world for the very FIRST TIME. Give a Mask to Phishing URL like a PRO.. A MUST have tool for Phishing.
sslstrip - A tool for exploiting Moxie Marlinspike's SSL "stripping" attack.
CamPhish - Grab cam shots from target's phone front camera or PC webcam just sending a link.
gophish - Open-Source Phishing Toolkit
Mythic - A collaborative, multi-platform, red teaming framework
mitmproxy - An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
Freeze - Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods