OneFuzz

0 (0)

OneFuzz is a self-hosted Fuzzing-As-A-Service platform initially launched by a small group in MSR, now a significant internal platform within Microsoft, aimed at driving security and quality into products through continuous developer-driven fuzzing.

Offensive Security

Free

fuzzing security-testing devsecops

ALTERNATIVES

Ruler

0 (0)

A tool for interacting with Exchange servers remotely and exploiting client-side Outlook features.

Offensive Security

Free

exchange remote-access vulnerability-exploitation

Abusing Exported Functions and Exposed DCOM Interfaces for Pass-Thru Command Execution and Lateral Movement

0 (0)

A blog post about abusing exported functions and exposed DCOM interfaces for pass-thru command execution and lateral movement

Offensive Security

Free

exploit lateral-movement

Loading Alternate Data Stream (ADS) DLL/CPL Binaries to Bypass AppLocker

0 (0)

Utilizing Alternate Data Streams (ADS) to bypass AppLocker default policies by loading DLL/CPL binaries.

Offensive Security

Free

file-system applocker dll-injection bypass security-group

CloakifyFactory

0 (0)

Data exfiltration & infiltration tool using text-based steganography to evade security controls.

Offensive Security

Free

steganography social-engineering

PoshC2

0 (0)

A proxy aware C2 framework for penetration testing, red teaming, post-exploitation, and lateral movement with modular format and highly configurable payloads.

Offensive Security

Free

c2 penetration-testing post-exploitation proxy red-team lateral-movement payloads

Pwndrop

0 (0)

Pwndrop is a self-deployable file hosting service for red teamers, allowing easy upload and sharing of payloads over HTTP and WebDAV.

Offensive Security

Free

penetration-testing red-team