ScriptIdiot

coding idiot..

Hong Kong

Pinned Repositories

BeaconNotifier-Discord
Cobalt strike CNA script to notify you via Discord whenever there is a new beacon.
Language:Python33 2 04
BOF-patchit
An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are available.
Language:C130 1 018
CobaltStrikeReflectiveLoader
Cobalt Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities.
Language:C4 0 01
PerunsFart-PPID
Userland API hooking bypass using PerunsFart spawning created process with spoofed PPID
Language:C++5 1 02
sleepmask_ekko_cfg
Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process
Language:C43 1 09
sleepmask_PatchlessHook
Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW
Language:C84 2 08
SuperSharpShooter
Payload Generation Framework
Language:VBA12 0 02
sw2-secinject
Section Mapping Process Injection modified with SysWhisper2 (sw2-secinject): Cobalt Strike BOF
Language:C41 2 011
SysmonQuiet
RDLL for Cobalt Strike beacon to silence sysmon process
Language:C87 2 016
vba_bin_runner
Basic python tools to generate shellcode runner in vba
Language:Python9 0 01

ScriptIdiot's Repositories

ScriptIdiot/SuperSharpShooter
Payload Generation Framework
Language:VBA12 0 02
ScriptIdiot/Chrome-App-Bound-Encryption-Decryption
Tool to decrypt App-Bound encrypted keys in Chrome 127+, using the IElevator COM interface with path validation and encryption protections.
1
ScriptIdiot/Ghosting-BOF
主要用于隐藏进程真实路径，进程带windows真签名
Language:C++1 0 01
ScriptIdiot/offensive-groovy
Groovy Post Exploitation
1
ScriptIdiot/SharpRedirect
Simple C# Redirector
1
ScriptIdiot/TokenSmith
TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and penetration tests with the tokens generated working out of the box with many popular Azure post exploitation tools.
1
ScriptIdiot/aad-bofs
AzureAD beacon object files
1
ScriptIdiot/AI-Redteaming
AI Redteaming Tools
0 0
ScriptIdiot/AWSRoundRobin
ScriptIdiot/bof-winrm-client
Language:C++0 0
ScriptIdiot/bofhound
Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
Language:Python0 01
ScriptIdiot/BypassCredGuard-BOF
BypassCredGuard CS BOF
ScriptIdiot/Coercer-dotnet
ScriptIdiot/CVE-2024-40711-Exp
CVE-2024-40711-exp
ScriptIdiot/DCOMUploadExec
DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
Language:C++1
ScriptIdiot/DetSql
Burp插件，快速探测可能存在SQL注入的请求并标记，提高测试效率
Language:Java0 0
ScriptIdiot/evilginx-collection
Public repo of some woking evilginx phishlets
ScriptIdiot/Fenrir
stack spoofing
Language:C++0 0
ScriptIdiot/Get-NetNTLM
Internal Monologue BOF
Language:C0 0
ScriptIdiot/KrbRelayEx
Language:C#0 01
ScriptIdiot/Maestro
Abusing Intune for Lateral Movement over C2
Language:C#0 0
ScriptIdiot/pwnlook
An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails configured in it.
Language:C#0 0
ScriptIdiot/pxethiefy
1
ScriptIdiot/pywerview
A (partial) Python rewriting of PowerSploit's PowerView
ScriptIdiot/reg_snake
Python tool to interact with WMI StdRegProv
ScriptIdiot/Rocabella
Sniffing files generator
ScriptIdiot/SCCMVNC
A tool to modify SCCM remote control settings on the client machine, enabling remote control without permission prompts or notifications. This can be done without requiring access to SCCM server.
Language:C#0 0
ScriptIdiot/TokenCert
TokenCert
ScriptIdiot/trust-validator
Validates priv escalation of AD trusts
ScriptIdiot/VladimiRED
1