Skip to content


Here are 593 public repositories matching this topic...

nil0x42 commented Oct 3, 2020

Current implementation of proclist plugin uses win32_ps_list_procs() php function on Windows host.

Therefore, linux implementation is a simple system("ps -a"), which is OPSEC unsafe, an would probably trigger EDR alerts.

A better implementation should avoid relying on system command execution.

to be documented stealth good first issue

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.

  • Updated May 12, 2022
  • Python

Improve this page

Add a description, image, and links to the redteam topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the redteam topic, visit your repo's landing page and select "manage topics."

Learn more