Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

Projects in Awesome Lists by outflanknl

A curated list of projects in awesome lists by outflanknl .

https://github.com/outflanknl/redelk

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

elastic elasticsearch kibana logstash monitoring red-teaming security siem

Last synced: 14 May 2025

https://github.com/outflanknl/RedELK

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

elastic elasticsearch kibana logstash monitoring red-teaming security siem

Last synced: 11 Jul 2025

https://github.com/outflanknl/evilclippy

A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.

excel macro malware ms-office pcode stomping vba word

Last synced: 15 May 2025

https://github.com/outflanknl/EvilClippy

A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.

excel macro malware ms-office pcode stomping vba word

Last synced: 15 Apr 2025

https://github.com/outflanknl/dumpert

LSASS memory dumper using direct system calls and API unhooking.

Last synced: 16 May 2025

https://github.com/outflanknl/Dumpert

LSASS memory dumper using direct system calls and API unhooking.

Last synced: 11 Jul 2025

https://github.com/outflanknl/c2-tool-collection

A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.

Last synced: 16 May 2025

https://github.com/outflanknl/C2-Tool-Collection

A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.

Last synced: 11 Jul 2025

https://github.com/outflanknl/invoke-adlabdeployer

Automated deployment of Windows and Active Directory test lab networks. Useful for red and blue teams.

Last synced: 06 Apr 2025

https://github.com/outflanknl/sharphide

Tool to create hidden registry keys.

Last synced: 06 Apr 2025

https://github.com/outflanknl/Invoke-ADLabDeployer

Automated deployment of Windows and Active Directory test lab networks. Useful for red and blue teams.

Last synced: 11 Jul 2025

https://github.com/outflanknl/spray-ad

A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.

Last synced: 06 Apr 2025

https://github.com/outflanknl/Spray-AD

A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.

Last synced: 11 Jul 2025

https://github.com/outflanknl/ps-tools

Ps-Tools, an advanced process monitoring toolkit for offensive operations

Last synced: 07 Apr 2025

https://github.com/outflanknl/Excel4-DCOM

PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)

Last synced: 16 Dec 2025

https://github.com/outflanknl/recon-ad

Recon-AD, an AD recon tool based on ADSI and reflective DLL’s

Last synced: 09 Apr 2025

https://github.com/outflanknl/excel4-dcom

PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)

Last synced: 09 Apr 2025

https://github.com/outflanknl/InlineWhispers

Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF)

Last synced: 01 May 2026

https://github.com/outflanknl/inlinewhispers

Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF)

Last synced: 09 Apr 2025

https://github.com/outflanknl/scripts

Small scripts that make life better

Last synced: 16 May 2025

https://github.com/outflanknl/findobjects-bof

A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or process handles.

Last synced: 04 Oct 2025

https://github.com/outflanknl/FindObjects-BOF

A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or process handles.

Last synced: 11 Jul 2025

https://github.com/outflanknl/edr-internals

Tools for analyzing EDR agents

Last synced: 10 Apr 2025

https://github.com/outflanknl/zipper

Zipper, a CobaltStrike file and folder compression utility.

Last synced: 22 Jul 2025

https://github.com/outflanknl/WdToggle

A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.

Last synced: 11 Jul 2025

https://github.com/outflanknl/wdtoggle

A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.

Last synced: 02 Apr 2026

https://github.com/outflanknl/helpcolor

Agressor script that lists available Cobalt Strike beacon commands and colors them based on their type

Last synced: 18 Mar 2026

https://github.com/outflanknl/presentations

Presentation material presented by Outflank team members at public events.

Last synced: 28 Jan 2026

https://github.com/outflanknl/HelpColor

Agressor script that lists available Cobalt Strike beacon commands and colors them based on their type

Last synced: 11 Jul 2025

https://github.com/outflanknl/tamperetw

PoC to demonstrate how CLR ETW events can be tampered.

Last synced: 04 Jul 2025

https://github.com/outflanknl/netshhelperbeacon

Example DLL to load from Windows NetShell

Last synced: 05 May 2025

https://github.com/outflanknl/net-gpppassword

.NET implementation of Get-GPPPassword. Retrieves the plaintext password and other information for accounts pushed through Group Policy Preferences.

Last synced: 05 May 2025

https://github.com/outflanknl/external_c2

POC for Cobalt Strike external C2

Last synced: 05 May 2025

https://github.com/outflanknl/doh_c2_trigger

Code for blogpost: https://outflank.nl/blog/2018/10/25/building-resilient-c2-infrastructues-using-dns-over-https/

Last synced: 05 May 2025

https://github.com/outflanknl/unmanaged-dotnet-patch

Modify managed functions from unmanaged code

Last synced: 09 Apr 2025

https://github.com/outflanknl/training-msofficeoffensivetradecraft

Info related to the Outflank training: Microsoft Office Offensive Tradecraft

Last synced: 24 Dec 2025

https://github.com/outflanknl/passworddump2elk

Clean public password dump files and store in ELK

Last synced: 05 May 2025

https://github.com/outflanknl/redelk-workshop

Items related to the RedELK workshop given at security conferences

Last synced: 13 Mar 2026

https://github.com/outflanknl/regcertipy

Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does

Last synced: 17 Mar 2026

https://github.com/outflanknl/exploits

Exploits developped by Outflank B.V. team members

Last synced: 06 Mar 2026

https://github.com/outflanknl/RedFile

Serving files with conditions, serverside keying and more.

Last synced: 02 Mar 2026

https://github.com/outflanknl/redfile

Serving files with conditions, serverside keying and more.

Last synced: 05 May 2025

https://github.com/outflanknl/invoke-templator

A PowerShell script to parse the docx/docm file format and update the template location.

Last synced: 07 Sep 2025