Empire Communication Profiles
With Communication Profiles, we can customize options for Empire’s GET request URIs, user agent, and headers. A basic profile consists of each element, separated by the pipe character. Profiles can incorporate multiple request URIs and Headers by separating URIs with commas and separating additional Headers with pipes.
FEATURES
ALTERNATIVES
A document that helps inform red team planning by contrasting against the very specific red team style described in Red Teams.
A managed code hooking template for .NET assemblies, enabling API hooking, code injection, and runtime manipulation.
Skyhook facilitates obfuscated HTTP file transfers to bypass IDS detections, enhancing secure data exchange.
Weaponizing Kerberos protocol flaws for stealthy attacks on domain users.
Macro_Pack is a tool used to automate obfuscation and generation of Office documents for pentest, demo, and social engineering assessments.
GNU/Linux Wireless distribution for security testing with XFCE desktop environment.
Tool for exploiting Sixnet RTUs to gain root level access with little effort.
PINNED
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.