Austin Hudson realoriginal
realoriginal
/ CtlInject_Legacy.c
Created
October 26, 2023 15:41
View CtlInject_Legacy.c
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /*! | |
| * | |
| * ROGUE | |
| * | |
| * GuidePoint Security LLC | |
| * | |
| * Threat and Attack Simulation Team | |
| * | |
| !*/ |
realoriginal
/ agent_proc_list_tab.py
Created
September 15, 2023 14:32
Example elements for displaying information back to the client and right-click-opt
View agent_proc_list_tab.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # -*- coding:utf-8 -*- | |
| import PyQt5 | |
| import qtinter | |
| import asyncio | |
| class AgentProcListTab( PyQt5.QtWidgets.QWidget ): | |
| """ | |
| Tasks the specified agent with requesting a process listing against the | |
| specified agent and executes the rendered results. |
realoriginal
/ export_payload_dialog.py
Created
July 24, 2023 14:15
View export_payload_dialog.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import asyncio | |
| import qtinter | |
| import ipaddress | |
| from PyQt5.QtWidgets import * | |
| from PyQt5.QtCore import * | |
| from PyQt5.QtGui import * | |
| class ExportPayloadDialog( QObject ): | |
| """ |
realoriginal
/ extc2.py
Created
May 17, 2023 21:06
View extc2.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # | |
| # ROGUE | |
| # | |
| # GuidePoint Security LLC | |
| # | |
| # Threat and Attack Simulation Team | |
| # | |
| import os | |
| import sys | |
| import click |
realoriginal
/ Entry.c
Last active
May 6, 2023 13:39
View Entry.c
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| D_SEC( A ) NTSTATUS NTAPI Entry( _In_ PVOID Parameter ) | |
| { | |
| PARSED_BUF Psr; | |
| UINT32 Wrt = 0; | |
| PARG Arg = NULL; | |
| LPWSTR Nps = NULL; | |
| HANDLE Pip = NULL; |
realoriginal
/ Entry.c
Created
March 29, 2023 16:40
TLDR: How a socks proxy client is written to tunnel connections from a 'teamserver' to an agent.
View Entry.c
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /*! | |
| * | |
| * RPROXICMP | |
| * | |
| * GuidePoint Security LLC | |
| * | |
| * Threat and Attack Simulation Team | |
| * | |
| !*/ |