Pinned Repositories
.NET-Obfuscator
Lists of .NET Obfuscator (Free, Freemium, Paid and Open Source )
AceLdr
Cobalt Strike UDRL for memory scanner evasion.
Active-Directory-Permission-Abuse
adcshunter
Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
adeleg
Active Directory delegation management tool
adPEAS
Powershell tool to automate Active Directory enumeration.
ConfTalks
SPFAbuse
SPF are not as strong as you may think. Red Team tool to send email on behalf of your target corp
0xAJStrike's Repositories
0xAJStrike/adcshunter
Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
0xAJStrike/ApexLdr
ApexLdr is a DLL Payload Loader written in C
0xAJStrike/BAADTokenBroker
0xAJStrike/BobTheSmuggler
"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file format, then XOR encrypt the archive and then hides inside PNG/GIF image file format (Image Polyglots).
0xAJStrike/BOFMask
0xAJStrike/BounceBack
↕️🤫 Stealth redirector for your red team operation security
0xAJStrike/CLRInjector
A PoC .NET-specific process injection tool
0xAJStrike/combine_harvester
Rust in-memory dumper
0xAJStrike/Dent
A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.
0xAJStrike/DFSCoerce-exe-2
DFSCoerce exe revisited version with custom authentication
0xAJStrike/DLL-Spoofer
POC for a DLL spoofer to determine DLL Hijacking
0xAJStrike/EmailFlare
Send emails from your domain through Cloudflare for free. Self host on your account.
0xAJStrike/ETWListicle
List the ETW provider(s) in the registration table of a process.
0xAJStrike/FlowMate
FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.
0xAJStrike/GetWebDAVStatus
Determine if the WebClient Service (WebDAV) is running on a remote system
0xAJStrike/LdapRelayScan
Check for LDAP protections regarding the relay of NTLM authentication
0xAJStrike/Lifetime-Amsi-EtwPatch
Two in one, patch lifetime powershell console, no more etw and amsi!
0xAJStrike/linWinPwn
linWinPwn is a bash script that automates a number of Active Directory Enumeration and Vulnerability checks
0xAJStrike/MSC_Dropper
0xAJStrike/NativeDump
Dump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!)
0xAJStrike/OffensivePipeline
OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team exercises.
0xAJStrike/OpenVoice
Instant voice cloning by MyShell.
0xAJStrike/PoolParty
A set of fully-undetectable process injection techniques abusing Windows Thread Pools
0xAJStrike/PsMapExec
A PowerShell tool that takes strong inspiration from CrackMapExec.
0xAJStrike/RedTeamInfra
0xAJStrike/sccmhunter
0xAJStrike/SharpLeftOvers
A C# Tool to find left over pentest data for use in your pentest or redteam op. Blue could maybe use to find files to cleanup
0xAJStrike/SharpShares
Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain
0xAJStrike/SharpTerminator
Terminate AV/EDR Processes using kernel driver
0xAJStrike/SuperSharpShares
SuperSharpShares is a tool designed to automate enumerating domain shares, allowing for quick verification of accessible shares by your associated domain account.