Pinned Repositories
Android-Bypass-Root-SSLPin
For my personal notes
AppLocker-Bypass
Bypassing AppLocker with C#
awesome-incident-response
A curated list of tools for incident response
AzureAiTMFunction
Azure AiTM Function PoC to phish Entra ID Credentials
BabukRansomwareSourceCode
Leaked source code of the babuk ransomware by VXUG
BEAR
Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks by Russian APT groups, Bear features a variety of encryption methods, including AES, XOR, DES, TLS, RC4, RSA and ChaCha to secure communication between the payload and the operator machine.
BITB
Browser In The Browser (BITB) Templates
Blackout
kill anti-malware protected processes (BYOVD)
BOF-NPPSPY
Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassuming file.
Certify
Active Directory certificate abuse.
c3pain's Repositories
c3pain/Android-Bypass-Root-SSLPin
For my personal notes
c3pain/AzureAiTMFunction
Azure AiTM Function PoC to phish Entra ID Credentials
c3pain/BEAR
Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks by Russian APT groups, Bear features a variety of encryption methods, including AES, XOR, DES, TLS, RC4, RSA and ChaCha to secure communication between the payload and the operator machine.
c3pain/Blackout
kill anti-malware protected processes (BYOVD)
c3pain/BOF-NPPSPY
Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassuming file.
c3pain/Chaos-Rootkit
x64 ring0 rootkit with process hiding, privilege escalation, and capabilities for protecting and unprotecting processes
c3pain/crtm.github.io
Learning Certified Red Team Master
c3pain/CS-Dinvoke-APCInjection
c3pain/CVE-2023-27350
Proof of Concept Exploit for PaperCut CVE-2023-27350
c3pain/CVE-2023-28252-Compiled-exe
A modification to fortra's CVE-2023-28252 exploit, compiled to exe
c3pain/CVE-2024-44193
Hacking Windows through iTunes - Local Privilege Escalation 0-day
c3pain/EnumStrike
Cobalt Strike Aggressor script to automate host and domain enumeration.
c3pain/esxi
c3pain/FindFrontableDomains
Search for potential frontable domains
c3pain/fsociety
c3pain/HiddenDesktop
HVNC for Cobalt Strike
c3pain/NoFilter
c3pain/OdinLdr
Cobaltstrike UDRL with memory evasion
c3pain/OneDorkForAll
An insane list of all dorks taken from everywhere from various different sources.
c3pain/PatchlessCLRLoader
.NET assembly loader with patchless AMSI and ETW bypass
c3pain/PatchlessInlineExecute-Assembly
Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.
c3pain/PoolParty
A set of fully-undetectable process injection techniques abusing Windows Thread Pools
c3pain/Proxy-Function-Calls-For-ETwTI
The code is a pingback to the Dark Vortex blog: https://0xdarkvortex.dev/hiding-memory-allocations-from-mdatp-etwti-stack-tracing/
c3pain/recaptcha-phish
Phishing with a fake reCAPTCHA
c3pain/Sharpmad
C# version of Powermad
c3pain/smugglo
An easy to use script for wrapping files into self-dropping HTML payloads to bypass content filters
c3pain/spoofcheck
Spoofcheck
c3pain/SQLRecon
A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.
c3pain/Terminator
Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
c3pain/TrollAMSI