Pinned Repositories
Android-Bypass-Root-SSLPin
For my personal notes
AppLocker-Bypass
Bypassing AppLocker with C#
awesome-incident-response
A curated list of tools for incident response
AzureAiTMFunction
Azure AiTM Function PoC to phish Entra ID Credentials
BabukRansomwareSourceCode
Leaked source code of the babuk ransomware by VXUG
BITB
Browser In The Browser (BITB) Templates
Blackout
kill anti-malware protected processes (BYOVD)
BOF-NPPSPY
Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassuming file.
Certify
Active Directory certificate abuse.
CertifyKit
Active Directory certificate abuse
c3pain's Repositories
c3pain/Android-Bypass-Root-SSLPin
For my personal notes
c3pain/AzureAiTMFunction
Azure AiTM Function PoC to phish Entra ID Credentials
c3pain/Blackout
kill anti-malware protected processes (BYOVD)
c3pain/BOF-NPPSPY
Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassuming file.
c3pain/Certify
Active Directory certificate abuse.
c3pain/Chaos-Rootkit
x64 ring0 rootkit with process hiding, privilege escalation, and capabilities for protecting and unprotecting processes
c3pain/CS-Dinvoke-APCInjection
c3pain/CS-Dinvoke-ShellcodeInjection
c3pain/CVE-2023-27350
Proof of Concept Exploit for PaperCut CVE-2023-27350
c3pain/CVE-2023-28252-Compiled-exe
A modification to fortra's CVE-2023-28252 exploit, compiled to exe
c3pain/EnumStrike
Cobalt Strike Aggressor script to automate host and domain enumeration.
c3pain/esxi
c3pain/FindFrontableDomains
Search for potential frontable domains
c3pain/fsociety
c3pain/HiddenDesktop
HVNC for Cobalt Strike
c3pain/Inveigh
.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers
c3pain/mimikatz
A little tool to play with Windows security
c3pain/NoFilter
c3pain/OdinLdr
Cobaltstrike UDRL with memory evasion
c3pain/OneDorkForAll
An insane list of all dorks taken from everywhere from various different sources.
c3pain/PatchlessCLRLoader
.NET assembly loader with patchless AMSI and ETW bypass
c3pain/PatchlessInlineExecute-Assembly
Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.
c3pain/Proxy-Function-Calls-For-ETwTI
The code is a pingback to the Dark Vortex blog: https://0xdarkvortex.dev/hiding-memory-allocations-from-mdatp-etwti-stack-tracing/
c3pain/Rubeus
Trying to tame the three-headed dog.
c3pain/Seatbelt
Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
c3pain/SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
c3pain/Sharpmad
C# version of Powermad
c3pain/SQLRecon
A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.
c3pain/Terminator
Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
c3pain/TrollAMSI