CodyJohnston

Pinned Repositories

aadcookiespoof
Azure AD Identity Protection Cookie Spoofing
Language:JavaScript0 1 00
abot
C# web crawler built for speed and flexibility. Please star this project! +1. Contact me with exciting opportunities!!
Language:C#0 2 00
AtomicSyscall
Tools and PoCs for Windows syscall investigation.
Language:C#0 1 00
BadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
Language:PowerShell0 1 00
CreateHiddenAccount
A tool for creating hidden accounts using the registry.
Language:Go2 1 01
Process_Killers
This is a library of batch files that I keep on my desktop to kill stubborn processes. Hope it helps. The batch files are incredibly simple, and if you want to add more, please just change the process name (and make sure the name is correct). Please send a pull request with you new files.
Language:Batchfile2 2 11
Red-Team-Infrastructure-Automation
Disposable and resilient red team infrastructure with Terraform
Language:HCL1 1 00
RemoteProcessInjection
C# remote process injection utility for Cobalt Strike
Language:C#1 1 00
shogun
Go Shotgun - Sends data across network without connections or packet data
Language:Go1 2 00
verizon_samsung_auto_enable_adb
Auto Enable ADB Zero-Day Exploit, Samsung Verizon Devices
Language:Shell7 1 02

CodyJohnston's Repositories

CodyJohnston/DeathSleep
A PoC implementation for an evasion technique to terminate the current thread and restore it before resuming execution, while implementing page protection changes during no execution.
Language:Python1 1 00
CodyJohnston/Red-Team-Infrastructure-Automation
Disposable and resilient red team infrastructure with Terraform
Language:HCL1 1 00
CodyJohnston/Sandman
Sandman is a NTP based backdoor for red team engagements in hardened networks.
Language:C#1 1 00
CodyJohnston/AtomicSyscall
Tools and PoCs for Windows syscall investigation.
Language:C#0 1 00
CodyJohnston/C3
Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits.
Language:C++1 0
CodyJohnston/Chisel-Strike
A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
Language:C#1 0
CodyJohnston/cobalt-arsenal
My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
Language:PowerShell1 0
CodyJohnston/Coercer
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 9 methods.
Language:Python1 0
CodyJohnston/CVE-2022-26937
A Zeek package to detect CVE-2022-26937, a vulnerability in the Network Lock Manager (NLM) protocol in Windows MFS server.
Language:Shell1 0
CodyJohnston/DFSCoerce
Language:Python1 0
CodyJohnston/evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
Language:Go1 0
CodyJohnston/FOLIAGE
Public variation of FOLIAGE ( original developer )
Language:C1 0
CodyJohnston/KrbRelayUp
KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
Language:C#1 0
CodyJohnston/netbox
The premiere source of truth powering network automation. Open source under Apache 2. Public demo: https://demo.netbox.dev
Language:Python1 0
CodyJohnston/nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
Language:PowerShell1 0
CodyJohnston/ntlmrelayx2proxychains
Language:Python1 0
CodyJohnston/Powershell-to-Ducky-Converter
This is an application I am developing to automatically convert powershell scripts into ready to use Ducky scripts
Language:PowerShell1 0
CodyJohnston/RDPHijack-BOF
Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.
Language:C1 0
CodyJohnston/RunAsWinTcb
Language:C1 0
CodyJohnston/ScamNumberSearch
This project is aimed at extracting the phone numbers of tech support scammers that are specifically abusing legitimate website's SEO to push their scam numbers very high up in the search results.
Language:C#2 01
CodyJohnston/ScubaGear
Automation to assess the state of your M365 tenant against CISA's baselines
Language:Open Policy Agent1 0
CodyJohnston/skanuvaty
Blazing fast DNS/network/port scanner
Language:Rust1 0
CodyJohnston/Spartacus
Spartacus DLL Hijacking Discovery Tool
Language:C#1 0
CodyJohnston/Spring4Shell-POC
Spring4Shell Proof Of Concept/Information CVE-2022-22965
Language:Python1 0
CodyJohnston/tapir
TAPIR is a multi-user, client/server, incident response framework
Language:Rust1 0
CodyJohnston/TeamsImplant
Language:C1 0
CodyJohnston/updog
Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.
Language:Python1 0
CodyJohnston/WFH
Language:JavaScript1 0
CodyJohnston/windows-coerced-authentication-methods
A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.
Language:Python1 0
CodyJohnston/wkpe
Windows Kernel Programming Experiments
Language:C++1 0