Category Archives: RedTeam

Inveigh – Windows PowerShell Spoofer and MITM Tool

Inveigh is a PowerShell ADIDNS/LLMNR/NBNS/mDNS/DNS spoofer and man-in-the-middle tool designed to assist penetration testers/red teamers

FakeLogonScreen – Fake Windows Logon Screen

FakeLogonScreen is a utility to fake the Windows logon screen in order to obtain the user’s password. The password entered is validated

Dnsteal – DNS Exfiltration Tool for sending files over DNS

Dnsteal is a fake DNS server that allows you to stealthily extract files from a victim machine through DNS requests. This can be useful during a Redteam

SysWhispers – AV/EDR Evasion via Direct System Calls

SysWhispers is a tool that helps with evasion security software by generating header/ASM files implants that allow to make direct system calls.

Chisel – Fast TCP tunnel over HTTP Channel

Chisel is a fast TCP tunnel, transported over HTTP, secured via SSH. Single executable including both client and server. Written in Go (golang).

BRAWL – Automated Adversary Emulation Exercise

BRAWL seeks to create a compromise by creating a system to automatically create an enterprise network inside a cloud environment.

Donut – Generates Shellcode from .NET Assemblies

Donut is a position-independent code that enables in-memory execution of VBScript, JScript, EXE, DLL files and dotNET assemblies.