From 789d5e861a3ebb80553991e216d8d63e0565deb9 Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreply.github.com>
Date: Tue, 25 May 2021 11:32:02 +0700
Subject: [PATCH] Add: S3cur3Th1sSh1t/RDPThiefInject to Credential Access
 section

---
 Offensive.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/Offensive.md b/Offensive.md
index ee185ba..67bb570 100644
--- a/Offensive.md
+++ b/Offensive.md
@@ -1096,6 +1096,10 @@ Some tools can be categorized in more than one category. But because the current
         <td><a href="https://github.com/rvrsh3ll/SharpSMBSpray">rvrsh3ll/SharpSMBSpray</a></td>
         <td>Spray a hash via smb to check for local administrator access</td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/S3cur3Th1sSh1t/RDPThiefInject">S3cur3Th1sSh1t/RDPThiefInject</a></td>
+        <td>RDPThief donut shellcode inject into mstsc</td>
+    </tr>
     <tr>
         <td><a href="https://github.com/sec-consult/aggrokatz">sec-consult/aggrokatz</a></td>
         <td>Aggrokatz is an aggressor plugin extension for Cobalt Strike which enables pypykatz to interface with the beacons remotely and allows it to parse LSASS dump files and registry hive files to extract credentials and other secrets stored without downloading the file and without uploading any suspicious code to the beacon.</td>