0xbadjuju

0xbadjuju's Stars

• BishopFox/sliver

  Adversary Emulation Framework

  Language:Go8.5k1507441.1k

• its-a-feature/Mythic

  A collaborative, multi-platform, red teaming framework

  Language:JavaScript3.3k67239432

• hasherezade/pe-sieve

  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

  Language:C++3.1k10292434

• NetSPI/PowerUpSQL

  PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

  Language:PowerShell2.5k10751463

• outflanknl/RedELK

  Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

  Language:Python2.4k80142371

• mkaring/ConfuserEx

  An open-source, free protector for .NET applications

  Language:C#2.4k85318368

• matterpreter/DefenderCheck

  Identifies the bytes that Microsoft Defender flags on.

  Language:C#2.3k4320399

• corelan/mona

  Corelan Repository for mona.py

  Language:Python1.7k7538564

• roadwy/RIP

  1.5k480218

• Mr-Un1k0d3r/SCShell

  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command

  Language:C1.4k285236

• FuzzySecurity/Sharp-Suite

  Also known by Microsoft as Knifecoat :hot_pepper:

  Language:C#1.1k492204

• RythmStick/AMSITrigger

  The Hunt for Malicious Strings

  Language:C#1.1k148155

• jxy-s/herpaderping

  Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

  Language:C++1.1k326214

• b4rtik/SharpKatz

  Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands

  Language:C#974258134

• CCob/BeaconEye

  Hunts out CobaltStrike beacons and logs operator command output

  Language:C#885164105

• blendin/3snake

  Tool for extracting information from newly spawned processes

  Language:C735248107

• slyd0g/DLLHijackTest

  DLL and PowerShell script to assist with finding DLL hijacks

  Language:PowerShell3294462

• TheNerdlist/nerdlist

  list of passwords more likely to be used by sysadmins, general nerds, and folk with access

  Language:Python25627467

• senzee1984/MutationGate

  Use hardware breakpoint to dynamically change SSN in run-time

  Language:C++2346234

• D00MFist/Go4aRun

  Shellcode runner in GO that incorporates shellcode encryption, remote process injection, block dlls, and spoofed parent process

  Language:Go2276223

• pkb1s/SharpAllowedToAct

  Computer object takeover through Resource-Based Constrained Delegation (msDS-AllowedToActOnBehalfOfOtherIdentity)

  Language:C#1853237

• jfmaes/SharpHandler

  Language:C#18110134

• fox-it/Invoke-CredentialPhisher

  Language:PowerShell17511233

• NetSPI/DAFT

  DAFT: Database Audit Framework & Toolkit

  Language:C#1738245

• daem0nc0re/SharpWnfSuite

  C# Utilities for Windows Notification Facility

  Language:C#1252123

• Sw4mpf0x/Kraken

  Language:HTML10151025

• dsnezhkov/racketeer

  Language:C#686922

• fishstiqz/nasmshell

  shell for nasm

  Language:Python624010

• BrokenEvent/ILStrip

  C# Assembly unused classes/references/resources cleaner

  Language:C#28447

• yestoi/crappylocker

  Python clone of CryptoLocker

  Language:Python6203