Koadic is a COM Command & Control framework that utilizes JScript to establish a remote access tool (RAT) for Windows systems, allowing for stealthy and flexible command and control capabilities. It provides a robust and modular architecture for building custom plugins and payloads, making it a powerful tool for penetration testers and red teamers. Koadic's JScript RAT enables fileless malware execution, allowing attackers to maintain persistence on a compromised system without leaving traces on disk.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
CrackMapExec (CME) - A tool for querying internal database for host and credential information in cybersecurity.
A structured approach for conducting penetration tests with seven main sections covering all aspects of the test.
Collection of penetration testing scripts for AWS with a focus on reconnaissance.
A tool for managing multiple reverse shell sessions/clients via terminal with a RESTful API.
A penetration testing tool for intercepting SSH connections and logging plaintext passwords.
AEM (Adobe Experience Manager) Hacker is a tool designed to help security researchers and penetration testers identify and exploit vulnerabilities in AEM-based systems.
A standalone man-in-the-middle attack framework used for phishing login credentials and bypassing 2-factor authentication.
A tool for interacting with Exchange servers remotely and exploiting client-side Outlook features.
PINNED

Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.