#

post-exploitation

Here are 19 public repositories matching this topic...

cyberark / Evasor

A tool to be used in post exploitation phase for blue and red teams to bypass APPLICATIONCONTROL policies

post-exploitation penetration-testing-tools bypass-applocker-policies full-automated

Updated Apr 8, 2023
C#

Gr1mmie / AtlasC2

C# C2 Framework centered around Stage 1 operations

post-exploitation command-and-control stage-1 red-teaming

Updated Apr 4, 2022
C#

shantanu561993 / SharpLoginPrompt

credentials post-exploitation redteam credentials-gathering offensivesecurity loginprompt

Updated Dec 19, 2020
C#

mez-0 / DecryptRDCManager

.NET 4.0 Remote Desktop Manager Password Gatherer

post-exploitation net-framework execute-assembly

Updated Sep 29, 2020
C#

BloodHound

byt3n33dl3 / BloodHound

Six Degrees of Enterprise Domain Admin

enterprise bloodhound activedirectory pentesting post-exploitation api-backend attack-mapper attack-paths

Updated Jun 5, 2025
C#

0xvm / csharp_reverse_shell

c# reverse shell poc

shell csharp reverse-shell post-exploitation

Updated Dec 22, 2025
C#

TartarusLabs / Coyote

Coyote is a standalone C# post-exploitation implant for maintaining access to compromised Windows infrastructure during red team engagements using DNS tunneling.

security backdoor penetration-testing post-exploitation covert-channel red-team dns-tunneling c2 command-and-control implant red-teaming adversary-emulation

Updated May 15, 2022
C#

hsheric0210 / AntiForensic.NET

Windows anti-forensics made easy

forensics post-exploitation anti-forensics anti-forensic redteam forensics-tools

Updated Mar 6, 2024
C#

p337r / Efes

Proof of concept demo for a tool that listens for keywords, and records audio to a file.

speech-recognition post-exploitation remote-admin-tool

Updated May 16, 2017
C#

p337r / IISplant

IIS-based implant

persistence post-exploitation

Updated Jul 4, 2017
C#

olivier-truong / reverse-shell

A Simple Reverse Shell TCP End-To-End Encrypted Made In C#

shell cryptography backdoor reverse-shell tool powershell network hacking windows-10 rat cs post-exploitation remote-access cyber-security remote-access-tool dotnet-7-0

Updated Nov 29, 2024
C#

RITRedteam / SharpWatchdogs

Processes used to guard Red Team property against and watch for, unwanted or unexpected blue team actions.

persistence malware post-exploitation redteam

Updated Jan 29, 2020
C#

p337r / Foster

Demo for spawning processes under a specified parent PID.

post-exploitation windows-api parent-process

Updated May 24, 2017
C#

byt3n33dl3 / AzureHoundAD

AzureAD Infra data collectors in CLI and binary executable form.

golang cloud azure post-exploitation attack-paths

Updated Feb 15, 2025
C#

p337r / iondie

DNS Cache Spy tool

dns dns-cache post-exploitation windows-api

Updated May 4, 2017
C#

FlameBudy / MSSQLServer-CLR-CommandKit

A single stored procedure transformed into a multi-functional tool like a Swiss Army knife after exploitation — an attack-focused SQL CLR toolset: file system control, payload preparation, privilege escalation, and shellcode/assembly loaders.

sql-server rpc post-exploitation command-execution offensive-security privilege-escalation shellcode-loader sqlclr payload-generation exploit-development dcom windows-internals sysadmin-tools lsass-dump mssql-clr potato-exploits

Updated Mar 16, 2026
C#

Sylphoraz / SharpAllowedToAct-Modify

Computer object takeover through Resource-Based Constrained Delegation msDS-AllowedToActOnBehalfOfOtherIdentity

delegation active-directory kerberos post-exploitation offensive-security security-tool windows-security red-team-tools ad-security rbcd

Updated Mar 16, 2026
C#

totekuh / RunEx

Drop-in runas.exe replacement with DACL handling, netonly support, and real-time I/O passthrough.

windows active-directory post-exploitation pentest offensive-security red-team credential runas netonly

Updated Feb 23, 2026
C#

Yareshms / NTLM-Relay-to-SYSTEM

Windows Local Privilege Escalation Tool. Exploits COM server hijacking to elevate privileges from local service to SYSTEM.

post-exploitation winrm privilege-escalation exploit-development dcom windows-privilege-escalation token-impersonation windows-administration ntlm-relay windows-exploits com-hijacking system-token windows-privileges

Updated Mar 16, 2026
C#

Improve this page

Add a description, image, and links to the post-exploitation topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the post-exploitation topic, visit your repo's landing page and select "manage topics."