br-sn

br-sn's Stars

• projectdiscovery/nuclei-templates

  Community curated list of templates for the nuclei engine to find security vulnerabilities.

  Language:JavaScript9.6k1951.6k2.7k

• itm4n/PrivescCheck

  Privilege Escalation Enumeration Script for Windows

  Language:PowerShell3.1k8350439

• jonaslejon/malicious-pdf

  💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

  Language:Python2.9k619390

• aahmad097/AlternativeShellcodeExec

  Alternative Shellcode Execution Via Callbacks

  Language:C++1.5k422304

• Mr-Un1k0d3r/SCShell

  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command

  Language:C1.4k295242

• Yaxser/Backstab

  A tool to kill antimalware protected processes

  Language:C1.4k2710241

• random-robbie/bruteforce-lists

  Some files for bruteforcing certain things.

  1.2k353362

• ayoubfathi/leaky-paths

  A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

  957260153

• Aetsu/OffensivePipeline

  OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team exercises.

  Language:C#796199147

• ly4k/SpoolFool

  Exploit for CVE-2022-21999 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE)

  Language:C#7791510161

• NUL0x4C/AtomLdr

  A DLL loader with advanced evasive features

  Language:C68410591

• nccgroup/nccfsas

  Information released publicly by NCC Group's Full Spectrum Attack Simulation (FSAS) team.

  Language:C607360110

• rvrsh3ll/BOF_Collection

  Various Cobalt Strike BOFs

  Language:C59913156

• RedSiege/EXCELntDonut

  Excel 4.0 (XLM) Macro Generator for injecting DLLs and EXEs into memory.

  Language:Python503201197

• antonioCoco/Mapping-Injection

  Just another Windows Process Injection

  Language:Assembly39014079

• optiv/Dent

  A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.

  Language:Go29716148

• karttoon/trigen

  Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.

  Language:Python2007241

• CCob/SylantStrike

  Simple EDR implementation to demonstrate bypass

  Language:C1637139

• FULLSHADE/OSCE

  Collection of Windows usermode exploits targeting various third-party software applications, these exploits were written in preparation for the Offsec CTP/OSCE certification

  Language:Python1405053

• REW-sploit/REW-sploit

  Emulate and Dissect MSF and *other* attacks

  Language:Python1395422

• yardenshafir/CVE-2020-1034

  PoC demonstrating the use of cve-2020-1034 for privilege escalation

  Language:C++1206040

• mrd0x/pe2shc-to-cdb

  Convert shellcode generated using pe_2_shellcode to cdb format.

  Language:Python966023

• badBounty/directInjectorPOC

  Small POC written in C# that performs shellcode injection on x64 processes using direct syscalls as a way to bypass user-land EDR hooks.

  Language:C#846132

• vivami/OutlookParasite

  Outlook persistence using VSTO add-ins

  Language:PowerShell848020

• catching-transparent-phish/phoca

  Tool to analyze and detect MITM phishing toolkits on the web.

  Language:GLSL802218

• csandker/RPCDump

  Language:C++794125

• EspressoCake/Process_Protection_Level_BOF

  Language:C524110

• dirtyfilthy/siem-from-scratch

  SIEM-From-Scratch is a drop-in ELK based SIEM component for your Vagrant infosec lab

  Language:Shell36505

• kasif-dekel/OSR_DeviceTree_Vuln

  14307

• listinvest/undonut

  Unpacker for donut shellcode

  Language:Go10003