Pinned Repositories
pshtt
Scan domains and return data based on HTTPS best practices
APIHashReplace
Repository for API Hashing script detailed in the Huntress Blog
AtomicSyscall
Tools and PoCs for Windows syscall investigation.
awsips
Daily Cron Script the grabs, parses, and outputs the IP addresses and CIDR blocks used for AWS/Cloudfront
badger-builder
badger-builder is an AI-assisted tool for generating dynamic Brute Ratel C4 profiles
CertCrawler
This script utilizes cert transparency logs to identify subdomains, identify if they are live, and identify the corresponding organizational ownership
DomainInvestigator
Generates the corresponding IP(s), registrant information, country, and existence of a CDN/Load Balancer given a domain or list of domains
SharpCollection
Daily builds of common C# offensive tools, built via Github actions
ShodanCIDRQuery
Query Shodan for a given CIDR range(s) saving the raw output or explicitly get Open Ports, Hostnames, and CVEs/Vulns
KyleEvers's Repositories
KyleEvers/awsips
Daily Cron Script the grabs, parses, and outputs the IP addresses and CIDR blocks used for AWS/Cloudfront
KyleEvers/DomainInvestigator
Generates the corresponding IP(s), registrant information, country, and existence of a CDN/Load Balancer given a domain or list of domains
KyleEvers/ShodanCIDRQuery
Query Shodan for a given CIDR range(s) saving the raw output or explicitly get Open Ports, Hostnames, and CVEs/Vulns
KyleEvers/APIHashReplace
Repository for API Hashing script detailed in the Huntress Blog
KyleEvers/AtomicSyscall
Tools and PoCs for Windows syscall investigation.
KyleEvers/badger-builder
badger-builder is an AI-assisted tool for generating dynamic Brute Ratel C4 profiles
KyleEvers/bhg
Code samples for No Starch Press Black Hat Go
KyleEvers/CertCrawler
This script utilizes cert transparency logs to identify subdomains, identify if they are live, and identify the corresponding organizational ownership
KyleEvers/SharpCollection
Daily builds of common C# offensive tools, built via Github actions
KyleEvers/blom_key_distribution
Implementation of Blom's Key Distribution in Golang
KyleEvers/bofhound
Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
KyleEvers/changeling
Change up a binary's embedded resources with this little creature.
KyleEvers/Codecepticon
KyleEvers/DInjector
Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL
KyleEvers/GraphStrike
Cobalt Strike HTTPS beaconing over Microsoft Graph API
KyleEvers/HardHatC2
A c# Command & Control framework
KyleEvers/Havoc
The Havoc Framework.
KyleEvers/kyleevers.github.io
KyleEvers/Ludus
Ludus is a system to build easy to use cyber environments, or "ranges" for testing and development.
KyleEvers/ObfLoader
MAC, IPv4, UUID shellcode Loaders and Obfuscators to obfuscate the shellcode and using some native API to converts it to it binary format and loads it.
KyleEvers/SharpC2
Command and Control Framework written in C#
KyleEvers/SharpCollection-1
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
KyleEvers/SharpHound4Cobalt
C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)
KyleEvers/SharpUnhooker
C# Based Universal API Unhooker
KyleEvers/SOAPHound
SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.
KyleEvers/SourcePoint
SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
KyleEvers/Spartacus
Spartacus DLL/COM Hijacking Toolkit
KyleEvers/TangledWinExec
C# PoCs for investigation of Windows process execution techniques
KyleEvers/TitanLdr
Cobalt Strike User Defined Reflective Loader (UDRL). Check branches for different functionality.
KyleEvers/XorStringsNET
Easy XOR string encryption for NET based binaries