Pinned Repositories
AccessToken-Impersonation
Access Token Manipulation to elevate to system from local admin
Applications-Security
Custom_Tooling
I created Custom Programs/binaries For my engagements. Most of these were created during my engagement period. Now I share a few for educational purposes.
CVE-2022-28171-POC
EmailScraper
Email OSINT Phishing
frameless-bitb
A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters implemented by login pages like Microsoft and the use with Evilginx.
Infrastructure-Assessment
Assessment_Note
Privilege-Escalation-Windows
QueueUserAPC
QueueUserAPC Process Injection with XOR Decrypt & Encrypt.
Reserve_Boolean-based-SQL-injection
NyaMeeEain's Repositories
NyaMeeEain/CVE-2022-28171-POC
NyaMeeEain/frameless-bitb
A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters implemented by login pages like Microsoft and the use with Evilginx.
NyaMeeEain/AccessToken-Impersonation
Access Token Manipulation to elevate to system from local admin
NyaMeeEain/Bypass_UAC
Bypass UAC Using fodhelper.exe
NyaMeeEain/Custom_Tooling
I created Custom Programs/binaries For my engagements. Most of these were created during my engagement period. Now I share a few for educational purposes.
NyaMeeEain/EmailScraper
Email OSINT Phishing
NyaMeeEain/QueueUserAPC
QueueUserAPC Process Injection with XOR Decrypt & Encrypt.
NyaMeeEain/Reserve_Boolean-based-SQL-injection
NyaMeeEain/BinarySharp_Compiled
NyaMeeEain/Cerbere
NyaMeeEain/CS-AutoPostChain
基于 OPSEC 的 CobaltStrike 后渗透自动化链
NyaMeeEain/CVE-2023-24055_PoC
CVE-2023-24055 PoC (KeePass 2.5x)
NyaMeeEain/dropper
Project that generates Malicious Office Macro Enabled Dropper for DLL SideLoading and Embed it in Lnk file to bypass MOTW
NyaMeeEain/evilgophish
evilginx3 + gophish
NyaMeeEain/FilelessPELoader
Loading Remote AES Encrypted PE in memory , Decrypted it and run it
NyaMeeEain/Fuck-Etw
Bypass the Event Trace Windows(ETW) and unhook ntdll.
NyaMeeEain/HWSyscalls
HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.
NyaMeeEain/LetMeowIn
A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.
NyaMeeEain/maldev
⚠️ malware development
NyaMeeEain/nanodump
The swiss army knife of LSASS dumping
NyaMeeEain/Night_Walker
NyaMeeEain/OSEP-Breaking-Chains
A collection of code snippets built to assist with breaking chains.
NyaMeeEain/PatchlessCLRLoader
.NET assembly loader with patchless AMSI and ETW bypass
NyaMeeEain/portswigger-websecurity-academy
Writeups for PortSwigger WebSecurity Academy
NyaMeeEain/Reflective_PE_Loader
Program to load a PE inside memory on another process.
NyaMeeEain/SourcePoint
SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
NyaMeeEain/SuperSharpShooter
Payload Generation Framework
NyaMeeEain/Windows11Exploits
NyaMeeEain/wolfy
Wolfy AV Bypasser
NyaMeeEain/wstunnel
Tunnel all your traffic over Websocket or HTTP2 - Bypass firewalls/DPI - Static binary available