2XXE-SRA

secondary account for https://github.com/generaltesler/

@securityRiskAdvisors

Pinned Repositories

BabukRansomwareSourceCode
Leaked source code of the babuk ransomware by VXUG
Language:C++0 0 00
ETWHash-Local
C# POC to extract NetNTLMv1/v2 hashes from ETW provider (modified version for using ETL file)
Language:C#3 0 00
GPOs
Windows GPOs
1 1 00
payload_resources
Payload source code resources for adversary simulation purposes
Language:C#2 1 01
dredd
Automated detection rule analysis utility
Language:Python30 8 28
indexes
Test case indexes
32 6 04
RedTeamSIEM
Repository of resources for configuring a Red Team SIEM using Elastic
Language:Shell98 8 020

2XXE-SRA/ETWHash-Local
C# POC to extract NetNTLMv1/v2 hashes from ETW provider (modified version for using ETL file)
Language:C#3 0 00
2XXE-SRA/payload_resources
Payload source code resources for adversary simulation purposes
Language:C#2 1 01
2XXE-SRA/GPOs
Windows GPOs
1 1 00
2XXE-SRA/BabukRansomwareSourceCode
Leaked source code of the babuk ransomware by VXUG
Language:C++0 0 00
2XXE-SRA/ColorDataProxyUACBypass
Exploits undocumented elevated COM interface ICMLuaUtil via process spoofing to edit registry then calls ColorDataProxy to trigger UAC bypass. Win 7 & up.
Language:C0 0
2XXE-SRA/gobfuscate
Obfuscate Go binaries and packages
Language:Go0 0
2XXE-SRA/inflate.py
Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.
Language:Python0 0
2XXE-SRA/MemeCryptor
Ransomware and Memes
Language:C++0 0
2XXE-SRA/overwriteMBR
Warning! Don't run this code on your computer.
Language:C++0 0
2XXE-SRA/simple-kubernetes-webhook
This project is aimed at illustrating how to build a fully functioning kubernetes admission webhook in the simplest way possible.
Language:Go0 0