Pinned Repositories
bin2sideload
GwisinMsi
PoC MSI payload based on ASEC/AhnLab's blog post
havoc2nginx
havoc2nginx is a simple python script that converts Havoc Framework's yaotl malleable c2 profile to Nginx configuration file format. Most of the code and the configuration of this project came from the cs2modrewrite project (https://github.com/threatexpress/cs2modrewrite) from Joe Vest and Andrew Chiles. All credits to them.
kr-redteam-playbook
오펜시브 시큐리티 TTP, 정보, 그리고 대응 방안을 분석하고 공유하는 프로젝트입니다. 정보보안 업계 종사자들과 학생들에게 도움이 되었으면 좋겠습니다.
OneDriveUpdaterSideloading
Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post
SharpJfmaesWorkshop
things I learned from @jfmaes's .NET reflection workshop - thank you for the great workshop
SharpPSLoader
Simple .NET loader for loading and executing Powershell payloads
sNanoDumpInject
NanoDumpInject from https://s3cur3th1ssh1t.github.io/Reflective-Dump-Tools/ , minor edits with a few syscalls
UuidShellcodeExec
PoC for UUID shellcode execution using DInvoke
ChoiSG's Repositories
ChoiSG/OneDriveUpdaterSideloading
Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post
ChoiSG/kr-redteam-playbook
오펜시브 시큐리티 TTP, 정보, 그리고 대응 방안을 분석하고 공유하는 프로젝트입니다. 정보보안 업계 종사자들과 학생들에게 도움이 되었으면 좋겠습니다.
ChoiSG/GwisinMsi
PoC MSI payload based on ASEC/AhnLab's blog post
ChoiSG/SharpPSLoader
Simple .NET loader for loading and executing Powershell payloads
ChoiSG/bin2sideload
ChoiSG/SharpJfmaesWorkshop
things I learned from @jfmaes's .NET reflection workshop - thank you for the great workshop
ChoiSG/sNanoDumpInject
NanoDumpInject from https://s3cur3th1ssh1t.github.io/Reflective-Dump-Tools/ , minor edits with a few syscalls
ChoiSG/havoc2nginx
havoc2nginx is a simple python script that converts Havoc Framework's yaotl malleable c2 profile to Nginx configuration file format. Most of the code and the configuration of this project came from the cs2modrewrite project (https://github.com/threatexpress/cs2modrewrite) from Joe Vest and Andrew Chiles. All credits to them.
ChoiSG/log4shell-dockerlab
Log4shell docker lab using christophetd's vulnerable app and mbechler's marshalsec
ChoiSG/criminalip-python
Unofficial python CLI for CriminalIp.io from AI Spera
ChoiSG/ludus_ansible_roles
scuffed ansible roles for ludus that "hey it works on my ludus setup"
ChoiSG/RTPSourceCodes
레드팀 플레이북 프로젝트를 위한 간단한 소스코드들 모음
ChoiSG/vwp
Vulnerable Wordpress Environment for educational purposes
ChoiSG/jenkins-psp
PoC jenkins files for generating PowerSharpPack payloads
ChoiSG/DarkhotelTTPReplica
Repo containing TTP and utility scripts that (mostly) replicates Darkhotel APT's TTP that was discovered in Nov. 2021 by ZScaler
ChoiSG/PrepareAssembly
Powershell script to git clone, compile, obfuscate, encrypt, and donut .NET assemblies
ChoiSG/yabnet
Yet Another C2, PoC created for educational purposes only
ChoiSG/bloodhound-import
Python based BloodHound data importer
ChoiSG/chameleon
PowerShell Script Obfuscator
ChoiSG/CrackMapExec
A swiss army knife for pentesting networks
ChoiSG/droptest
ChoiSG/Inveigh
.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers
ChoiSG/InvisibilityCloak
Proof-of-concept obfuscation toolkit for C# post-exploitation tools
ChoiSG/Invoke-HiveNightmare
PoC for CVE-2021-36934, which enables a standard user to be able to retrieve the SAM, Security, and Software Registry hives in Windows 10 version 1809 or newer
ChoiSG/masky-agent
ChoiSG/PackMyPayload
A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX
ChoiSG/pyHellShell
ChoiSG/spoofcheck
ChoiSG/webparazzi
Simple script to take screenshot from a list of subdomains or ip addresses
ChoiSG/xcon-internpayload