Menn1s

Menn1s's Stars

• trustedsec/unicorn

  Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.

  Language:Python3.7k815

• initialcommit-com/git-sim

  Visually simulate Git operations in your own repos with a single terminal command.

  Language:Python4.2k109

• knavesec/Max

  Maximizing BloodHound. Max is a good boy.

  Language:Python50160

• Proviesec/google-dorks

  Useful Google Dorks for WebSecurity and Bug Bounty

  985184

• ly4k/PassTheChallenge

  Recovering NTLM hashes from Credential Guard

  Language:C32721

• ARPSyndicate/awesome-intelligence

  A collaboratively curated list of awesome Open-Source Intelligence (OSINT) Resources

  1.8k88

• Slackadays/Clipboard

  😎🏖️🐬 Your new, 𝙧𝙞𝙙𝙤𝙣𝙠𝙪𝙡𝙞𝙘𝙞𝙤𝙪𝙨𝙡𝙮 smart clipboard manager

  Language:C++4.8k144

• wavestone-cdt/EDRSandblast

  Language:C1.5k279

• pwn1sher/frostbyte

  FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads

  Language:C#37550

• med0x2e/ExecuteAssembly

  Load/Inject .NET assemblies by; reusing the host (spawnto) process loaded CLR AppDomainManager, Stomping Loader/.NET assembly PE DOS headers, Unlinking .NET related modules, bypassing ETW+AMSI, avoiding EDR hooks via NT static syscalls (x64) and hiding imports by dynamically resolving APIs (hash).

  Language:C++545108

• tremwil/ds3-nrssr-rce

  Documentation and proof of concept code for CVE-2022-24125 and CVE-2022-24126.

  Language:C++1508

• zyn3rgy/LdapRelayScan

  Check for LDAP protections regarding the relay of NTLM authentication

  Language:Python46470

• dirkjanm/krbrelayx

  Kerberos unconstrained delegation abuse toolkit

  Language:Python1.1k172

• rsmudge/unhook-bof

  Remove API hooks from a Beacon process.

  Language:C26257

• DataDog/stratus-red-team

  :cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud

  Language:Go1.8k213

• optiv/Freeze

  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods

  Language:Go1.4k182

• corkami/collisions

  Hash collisions and exploitations

  Language:Python3.1k186

• rootsecdev/Azure-Red-Team

  Azure Security Resources and Notes

  Language:PowerShell1.5k204

• xforcered/InvisibilityCloak

  Proof-of-concept obfuscation toolkit for C# post-exploitation tools

  Language:Python41375

• xforcered/CredBandit

  Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that back through your already existing Beacon communication channel

  Language:C23226

• evilashz/CheeseOunce

  Coerce Windows machines auth via MS-EVEN

  Language:C15316

• SecurityRiskAdvisors/msspray

  Password attacks and MFA validation against various endpoints in Azure and Office 365

  Language:Python14922

• BishopFox/eyeballer

  Convolutional neural network for analyzing pentest screenshots

  Language:Python1k125

• mandiant/Azure_Workshop

  Language:HCL60882

• electron/asar

  Simple extensive tar-like archive format with indexing

  Language:TypeScript2.6k248

• icyguider/Shhhloader

  Syscall Shellcode Loader (Work in Progress)

  Language:Python1.1k184

• pathtofile/Sealighter

  Sysmon-Like research tool for ETW

  Language:C++33541

• p0dalirius/windows-coerced-authentication-methods

  A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.

  Language:Python49361

• zeronetworks/rpcfirewall

  Language:C++48175

• indygreg/PyOxidizer

  A modern Python application packaging and distribution tool

  Language:Rust5.5k238