Kevin-Robertson

Kevin-Robertson's Stars

• clong/DetectionLab

  Automate the creation of a lab environment complete with security tooling and logging best practices

  Language:HTML4.6k154598982

• Findomain/Findomain

  The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, multiple API Keys for sources and much more.

  Language:Rust3.3k59160362

• byt3bl33d3r/OffensiveNim

  My experiments in weaponizing Nim (https://nim-lang.org/)

  Language:Nim2.8k6929351

• ComodoSecurity/openedr

  Open EDR public repository

  Language:C++2.2k10238436

• Hackndo/lsassy

  Extract credentials from lsass remotely

  Language:Python1.9k5134234

• topotam/PetitPotam

  PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.

  Language:C1.8k286286

• jthuraisamy/SysWhispers

  AV/EDR evasion via direct system calls.

  Language:Assembly1.8k608264

• optiv/Freeze

  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods

  Language:Go1.4k2914177

• Mr-Un1k0d3r/SCShell

  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command

  Language:C1.4k295234

• matterpreter/OffensiveCSharp

  Collection of Offensive C# Tooling

  Language:C#1.4k397243

• FuzzySecurity/Sharp-Suite

  Also known by Microsoft as Knifecoat :hot_pepper:

  Language:C#1.1k492204

• nccgroup/SocksOverRDP

  Socks5/4/4a Proxy support for Remote Desktop Protocol / Terminal Services / Citrix / XenApp / XenDesktop

  Language:C++1.1k2315167

• daem0nc0re/TangledWinExec

  PoCs and tools for investigation of Windows process execution techniques

  Language:C#871213138

• djhohnstein/SharpChromium

  .NET 4.0 CLR Project to retrieve Chromium data, such as cookies, history and saved logins.

  Language:C#683191299

• NUL0x4C/AtomLdr

  A DLL loader with advanced evasive features

  Language:C6439584

• nyxgeek/onedrive_user_enum

  onedrive user enumeration - pentest tool to enumerate valid o365 users

  Language:Python60612375

• ZeroMemoryEx/Amsi-Killer

  Lifetime AMSI bypass

  Language:C++5779485

• G0ldenGunSec/SharpSecDump

  .Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py

  Language:C#57010274

• airbus-cert/Winshark

  A wireshark plugin to instrument ETW

  Language:Lua52828756

• microsoft/WindowsProtocolTestSuites

  ⭐⭐Join us at sambaXP 2024 (Apr 17 - Apr 18)

  Language:C#51691115207

• bohops/UltimateWDACBypassList

  A centralized resource for previously documented WDAC bypass techniques

  47615268

• outflanknl/SharpHide

  Tool to create hidden registry keys.

  Language:C#46224396

• 0xthirteen/SharpMove

  .NET Project for performing Authenticated Remote Execution

  Language:C#36911065

• itm4n/PPLmedic

  Dump the memory of any PPL with a Userland exploit chain

  Language:C++3278334

• xforcered/StandIn

  StandIn is a small .NET35/45 AD post-exploitation toolkit

  Language:C#2548030

• citronneur/rdp-rs

  Remote Desktop Protocol in RUST

  Language:Rust22551539

• rvrsh3ll/SharpSMBSpray

  Spray a hash via smb to check for local administrator access

  Language:C#1405120

• leechristensen/RequestAADRefreshToken

  Language:C#1225323

• Sagar-Jangam/DNSUpdate

  A python based script to update DNS entries in ADIDNS

  Language:Python35116

• etlownoise/xolo

  Tool to crawl, visualize and interact with SQL server links in a d3 graph to help in your red/blue/purple/.../risk assessments pentest hacking team exercises.

  Language:HTML18106