LennonCMJ's Stars
xssdoctor/graphqlMaker
Finds graphql queries in javascript files
GhostPack/SafetyKatz
SafetyKatz is a combination of slightly modified version of @gentilkiwi's Mimikatz project and @subtee's .NET PE Loader
subat0mik/Misconfiguration-Manager
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.
nickvourd/Windows-Local-Privilege-Escalation-Cookbook
Windows Local Privilege Escalation Cookbook
python-openxml/python-docx
Create and modify Word documents with Python
bitsadmin/nopowershell
PowerShell rebuilt in C# for Red Teaming purposes
ise-uiuc/magicoder
Magicoder: Source Code Is All You Need
linexjlin/GPTs
leaked prompts of GPTs
Syslifters/sysreptor
Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
noproto/apple_ble_spam_ofw
apple_ble_spam for OFW
gh0x0st/Get-GPAutoLogon
Using PowerShell to quickly scan through the SYSVOL share for exposed credentials within auto logon policies.
christophetd/CloudFlair
🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
websecnl/MagicByteSelector
Burp Suite Extension for inserting a magic byte into responder's request
lutzenfried/OffensiveCloud
Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)
sh4hin/GoPurple
Yet another shellcode runner consists of different techniques for evaluating detection capabilities of endpoint security solutions
SpecterOps/at-ps
Adversary Tactics - PowerShell Training
WithSecureLabs/iocs
semgrep/semgrep
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
fox-it/Invoke-ACLPwn
ZeroMemoryEx/Blackout
kill anti-malware protected processes ( BYOVD) (Microsoft Won )
UberGuidoZ/Flipper
Playground (and dump) of stuff I make or modify for the Flipper Zero
Accenture/Codecepticon
.NET/PowerShell/VBA Offensive Security Obfuscator
vectra-ai-research/MAAD-AF
MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
nccgroup/DroppedConnection
chvancooten/NimPlant
A light-weight first-stage C2 implant written in Nim.
nettitude/Aladdin
chvancooten/OSEP-Code-Snippets
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
Ne0nd0g/merlin
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
openai/openai-cookbook
Examples and guides for using the OpenAI API
deepinstinct/Dirty-Vanity
A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.html#dirty-vanity-a-new-approach-to-code-injection--edr-bypass-28417