Skip to content
@optiv

Optiv Source Zero

Optiv Source Zero provides research, tools and resources for the innovative cybersecurity community. Part of Optiv.

Pinned Loading

  1. ScareCrow ScareCrow Public archive

    ScareCrow - Payload creation framework designed around EDR bypass.

    Go 2.8k 510

  2. Ivy Ivy Public archive

    Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environmen…

    Go 742 127

  3. Go365 Go365 Public

    An Office365 User Attack Tool

    Go 627 102

  4. Dent Dent Public archive

    A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.

    Go 297 48

  5. Talon Talon Public archive

    A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.

    Go 432 78

  6. Registry-Recon Registry-Recon Public

    Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon

    322 36

Repositories

Showing 10 of 47 repositories
  • KnockKnock Public

    Enumerate valid users within Microsoft Teams and OneDrive with clean output.

    optiv/KnockKnock’s past year of commit activity
    Python 59 8 0 0 Updated Sep 30, 2024
  • doppelganger Public archive

    Doppelgänger is firmware that runs on ESP32 devices that can be embedded within commercially available RFID readers with the intent of capturing access control card data while performing physical security assessments. Doppelgänger keeps the operator's ease of access, maintenance, and operational communications in mind.

    optiv/doppelganger’s past year of commit activity
    C++ 14 MIT 9 0 0 Updated Jun 14, 2024
  • OSINT_Encyclopedia Public

    Your go-to resource for all things OSINT

    optiv/OSINT_Encyclopedia’s past year of commit activity
    159 MIT 20 0 1 Updated Mar 28, 2024
  • Go365 Public

    An Office365 User Attack Tool

    optiv/Go365’s past year of commit activity
    Go 627 MIT 102 5 6 Updated Mar 19, 2024
  • blemon Public

    Universal BLE Monitoring with Frida (or Objection)

    optiv/blemon’s past year of commit activity
    JavaScript 96 MIT 13 3 1 Updated Nov 13, 2023
  • Talon Public archive

    A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.

    optiv/Talon’s past year of commit activity
    Go 432 MIT 78 2 3 Updated Aug 18, 2023
  • Mangle Public archive

    Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs

    optiv/Mangle’s past year of commit activity
    Go 1,180 MIT 155 2 1 Updated Aug 18, 2023
  • Ivy Public archive

    Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode.

    optiv/Ivy’s past year of commit activity
    Go 742 MIT 127 4 1 Updated Aug 18, 2023
  • Dent Public archive

    A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.

    optiv/Dent’s past year of commit activity
    Go 297 MIT 48 0 2 Updated Aug 18, 2023
  • Freeze.rs Public archive

    Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST

    optiv/Freeze.rs’s past year of commit activity
    Rust 709 MIT 83 0 0 Updated Aug 18, 2023

People

This organization has no public members. You must be a member to see who’s a part of this organization.

Top languages

Loading…

Most used topics

Loading…