Pinned Repositories
Auto_EAP
Automated Brute-Force Login Attacks Against EAP Networks.
Freeze
Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
Freeze.rs
Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
Limelighter
A tool for generating fake code signing certificates or signing real ones
Mangle
Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
ScareCrow
ScareCrow - Payload creation framework designed around EDR bypass.
SniffAir
A framework for wireless pentesting.
SourcePoint
SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
Vibe
A framework for stealthy domain reconnaissance
ZipExec
A unique technique to execute binaries from a password protected zip
Tylous's Repositories
Tylous/SniffAir
A framework for wireless pentesting.
Tylous/ZipExec
A unique technique to execute binaries from a password protected zip
Tylous/SourcePoint
SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
Tylous/Limelighter
A tool for generating fake code signing certificates or signing real ones
Tylous/Vibe
A framework for stealthy domain reconnaissance
Tylous/ScareCrow
ScareCrow - Payload creation framework designed around EDR bypass.
Tylous/Freeze.rs
Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
Tylous/Freeze
Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
Tylous/Mangle
Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
Tylous/Slides
Tylous/Talon
A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.
Tylous/GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
Tylous/Ivy
Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode.
Tylous/File-Smuggling
HTML smuggling is not an evil, it can be useful
Tylous/PackMyPayload
A PoC that packages payloads into output containersb to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX
Tylous/build_a_phish
Ansible playbook to deploy a phishing engagement
Tylous/Dent
A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.
Tylous/SysWhispers3
SysWhispers on Steroids - AV/EDR evasion via direct system calls.
Tylous/SharpAllTheThings
The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.
Tylous/AzureAttackKit
Collection of Azure Tools to Pull down for Attacking an Env
Tylous/InlineExecute-Assembly
InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditional fork and run execute-assembly module
Tylous/PECheck
A tool to verify and create PE Checksums for Portable Executable (PE) files.
Tylous/PetitPotam
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
Tylous/rustdesk-hvnc
HVNC based on RustDesk
Tylous/SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
Tylous/TREVORspray
TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!
Tylous/cs-tools
cobalt strike tools
Tylous/evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
Tylous/EvilnoVNC
Ready to go Phishing Platform
Tylous/gofalcon
Golang-based SDK to CrowdStrike's APIs