PaulzePirate

Pinned Repositories

AzTokenFinder
Language:C#0 0 00
AzureC2Relay
AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Cobalt Strike Malleable C2 profile.
Language:C#0 0 00
BAADTokenBroker
Language:PowerShell00
DLLHound
Find potential DLL Sideloads on your windows computer
Language:PowerShell00
ForgeCert
"Golden" certificates
Language:C#0 0 00
FunctionalC2
A small POC of using Azure Functions to relay communications. Feel free to add additional functionality beyond this POC!
Language:Python0 0 00
gocheck
Because AV evasion should be easy.
Language:Go00
Invoke-DLLClone
Koppeling x Metatwin x LazySign
Language:PowerShell0 0 00
ysoserial.net-docker
ysoserial.net docker image
Language:Shell1 0 00

PaulzePirate's Repositories

PaulzePirate/ysoserial.net-docker
ysoserial.net docker image
Language:Shell1 0 00
PaulzePirate/AzTokenFinder
Language:C#0 0 00
PaulzePirate/AzureC2Relay
AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Cobalt Strike Malleable C2 profile.
Language:C#0 0 00
PaulzePirate/BAADTokenBroker
Language:PowerShell00
PaulzePirate/DLLHound
Find potential DLL Sideloads on your windows computer
Language:PowerShell00
PaulzePirate/ForgeCert
"Golden" certificates
Language:C#0 0 00
PaulzePirate/FunctionalC2
A small POC of using Azure Functions to relay communications. Feel free to add additional functionality beyond this POC!
Language:Python0 0 00
PaulzePirate/gocheck
Because AV evasion should be easy.
Language:Go00
PaulzePirate/Invoke-DLLClone
Koppeling x Metatwin x LazySign
Language:PowerShell0 0 00
PaulzePirate/IORI_Loader
UUID shellcode Loader with dynamic indirect syscall implementation, syscall number/instruction get resolved dynamicaly at runtime, and the syscall number/instruction get unhooked using Halosgate technique. Function address get resolved from the PEB by offsets and comparaison by hashes
Language:C++0 0 00
PaulzePirate/NovaLdr
Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)
Language:Rust00
PaulzePirate/RecycledInjector
Native Syscalls Shellcode Injector
Language:C0 0 00
PaulzePirate/TeamsImplant
Language:C0 0 00
PaulzePirate/TokenUniverse
An advanced tool for working with access tokens and Windows security policy.
Language:Pascal0 0 00
PaulzePirate/UUIDRegistryShellcode
Write and Hide each UUID in the char* array of UUIDS shellcode in a registry key value location as REG_SZ (the location could be different from the other), then retrieve them and assemble them in UUIDs char* array shellcode and Run it
Language:C++0 0 00
PaulzePirate/TokenSmith
TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and penetration tests with the tokens generated working out of the box with many popular Azure post exploitation tools.