Pinned Repositories
Amsi-Bypass-Powershell
This repo contains some Amsi Bypass methods i found on different Blog Posts.
Nim-RunPE
A Nim implementation of reflective PE-Loading from memory
NimGetSyscallStub
Get fresh Syscalls from a fresh ntdll.dll copy
OffensiveVBA
This repo covers some code execution and AV Evasion methods for Macros in Office documents
Pentest-Tools
PowerSharpPack
Ruy-Lopez
SharpImpersonation
A User Impersonation tool - via Token or Shellcode injection
SharpNamedPipePTH
Pass the Hash to a named pipe for token Impersonation
WinPwn
Automation for internal Windows Penetrationtest / AD-Security
S3cur3Th1sSh1t's Repositories
S3cur3Th1sSh1t/WinPwn
Automation for internal Windows Penetrationtest / AD-Security
S3cur3Th1sSh1t/Pentest-Tools
S3cur3Th1sSh1t/Amsi-Bypass-Powershell
This repo contains some Amsi Bypass methods i found on different Blog Posts.
S3cur3Th1sSh1t/PowerSharpPack
S3cur3Th1sSh1t/Creds
Some usefull Scripts and Executables for Pentest & Forensics
S3cur3Th1sSh1t/SharpImpersonation
A User Impersonation tool - via Token or Shellcode injection
S3cur3Th1sSh1t/Caro-Kann
Encrypted shellcode Injection to avoid Kernel triggered memory scans
S3cur3Th1sSh1t/Ruy-Lopez
S3cur3Th1sSh1t/SharpNamedPipePTH
Pass the Hash to a named pipe for token Impersonation
S3cur3Th1sSh1t/Nim-RunPE
A Nim implementation of reflective PE-Loading from memory
S3cur3Th1sSh1t/NimGetSyscallStub
Get fresh Syscalls from a fresh ntdll.dll copy
S3cur3Th1sSh1t/SharpVeeamDecryptor
Decrypt Veeam database passwords
S3cur3Th1sSh1t/Nim_DInvoke
D/Invoke implementation in Nim
S3cur3Th1sSh1t/Excel-Phish
Phish password protected Excel-Files
S3cur3Th1sSh1t/Get-System-Techniques
S3cur3Th1sSh1t/NimShellcodeFluctuation
ShellcodeFluctuation PoC ported to Nim
S3cur3Th1sSh1t/BitwardenDecryptBrute
Wordlist attacks on Bitwarden data.json files
S3cur3Th1sSh1t/S3cur3Th1sSh1t
S3cur3Th1sSh1t/SharpUnhooker
C# Based Universal API Unhooker - Automatically Unhook API Hives (ntdll.dll,kernel32.dll,user32.dll,and kernelbase.dll)
S3cur3Th1sSh1t/MailSniper
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
S3cur3Th1sSh1t/OffensiveNim
My experiments in weaponizing Nim (https://nim-lang.org/)
S3cur3Th1sSh1t/Internal-Monologue
Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS
S3cur3Th1sSh1t/NimWinAPICustom
Resolve WinAPI func. Custom GetProcAddress and GetModuleHandle written in Nim
S3cur3Th1sSh1t/Bitmancer
Nim Library for Offensive Security Development
S3cur3Th1sSh1t/Carbuncle
Tool for interacting with outlook interop during red team engagements
S3cur3Th1sSh1t/impacket
Impacket is a collection of Python classes for working with network protocols.
S3cur3Th1sSh1t/denim
Automated compiler obfuscation for nim
S3cur3Th1sSh1t/Shellcode-Hide
This repo contains : simple shellcode Loader , Encoders (base64 - custom - UUID - IPv4 - MAC), Encryptors (AES), Fileless Loader (Winhttp, socket)
S3cur3Th1sSh1t/KrbRelayUp
KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
S3cur3Th1sSh1t/BadPotato
Windows 权限提升 BadPotato