ashr

I used to be on the internet. Now i'm a shadow in a dark room sniffing everything off a trunk port

Pinned Repositories

c2framework
Various C2 Framework Dropper/Stager generator to incorporate into AtomicRedTeam.
Language:C#3 2 00
COM-XSL-Load-InMem-DotNet
RCE through Microsoft.XMLDOM com object without touching disk
Language:C#7 1 00
CVE-2017-8759-exploits
Two versions of CVE-2017-8759 exploits
Language:Visual Basic2 2 04
dumptrack
.Net hack dump tracker
Language:C#0 2 00
MuddyC3v1.0.1-
This is the MuddyWater APT C3 v1.0.1 Source
Language:Python3 1 053
netrefject
Inject .Net payloads into other .Net assemblies on disk
Language:C#61 5 015
no-username-telnet-bruter
Telnet bruter for systems with no username like some video conferencing devices including anti-bruteforce-detection-and-mitigation
Language:C#0 3 01
pattern_create
C# version of metasploit's pattern_create.rb
Language:C#02
vlan-hopper
Little utility written in c# to hop VLANs and try to get IPs from dhcp server (Cool for accessing Voice Vlans for arp spoof sniffing if the network is not secure)
Language:C#4 3 03
wpscan-auto
Automated wpscans and email delivery of reports (For scanning multiple wordpress sites on a schedule, like through crontab)
Language:C#3 2 00

ashr's Repositories

ashr/apache-log4j-poc
Apache Log4j 远程代码执行
ashr/BeaconEye
Hunts out CobaltStrike beacons and logs operator command output
Language:C#0 0
ashr/binlex
A Binary Genetic Traits Lexer
Language:C++0 0
ashr/CobaltSpam
Language:Python0 0
ashr/CVE-2021-40444
CVE-2021-40444 PoC
ashr/CVE-2022-0185
CVE-2022-0185
Language:C0 0
ashr/CVE-2022-21882
win32k LPE
ashr/CVE-2022-21907
Windows HTTP协议栈远程代码执行漏洞 CVE-2022-21907
Language:Python0 0
ashr/ExternalC2.NET
.NET implementation of Cobalt Strike's External C2 Spec
Language:C#0 0
ashr/EyeWitness
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
Language:Python0 0
ashr/halosgate-ps
Cobalt Strike BOF that uses a custom ASM HalosGate & HellsGate syscaller to return a list of processes
ashr/HellsGateNim
A quick example of the Hells Gate technique in Nim
Language:Nim0 0
ashr/HTTPS_CSharp_Server
Implementing a Multithreaded HTTP/HTTPS Debugging Proxy Server in C# xref. `https://www.codeproject.com/Articles/93301/Implementing-a-Multithreaded-HTTP-HTTPS-Debugging`
ashr/injectEtwBypass
CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)
Language:C0 0
ashr/JNDIExploit
A malicious LDAP server for JNDI injection attacks
Language:Java0 0
ashr/linux
Linux kernel source tree
Language:C0 0
ashr/Logout4Shell
Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell
Language:Java0 0
ashr/mal_unpack_drv
MalUnpack companion driver
ashr/malicious-pdf
Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator
Language:Python0 0
ashr/noPac
CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
Language:C#0 0
ashr/proxyshell-poc
Language:Python0 0
ashr/RCE-0-day-for-GhostScript-9.50
RCE 0-day for GhostScript 9.50 - Payload generator
ashr/redirector
Safe Redirector
Language:HTML
ashr/RustSCRunner
Shellcode Runner/Injector in Rust using NTDLL functions directly with the ntapi Library
Language:Rust0 0
ashr/Slayer
Slayer
Language:Python0 0
ashr/StopDefender
Stop Windows Defender programmatically
Language:C++0 0
ashr/ThreadStackSpoofer
Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation from scanners and analysts.
Language:C++0 0
ashr/vx
Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.
Language:Assembly0 0
ashr/VXUG-Papers
Research code & papers from members of vx-underground.
Language:Go0 0
ashr/ZipExec
A unique technique to execute binaries from a password protected zip
Language:Go0 0