carnal0wnage
twitter: @carnal0wnage talks: http://www.slideshare.net/chrisgates blog: http://carnal0wnage.attackresearch.com/
Pinned Repositories
ApplicationWhitelistBypassTechniques
A Catalog of Application Whitelisting Bypass Techniques
carnal0wnage-code
Random Code
malicious_file_maker
malicious file maker/sender to create and send malicious attachments to test your email filter/alerting
Metasploit-Code
Metasploit modules that didn't make it into trunk for some reason or the other
pentesty_scripts
scripts for pentesting
PoshRat
PowerShell Reverse HTTPs Shell
python_lnk_maker
Make Windows LNK file with python (pylnk)
weirdAAL
WeirdAAL (AWS Attack Library)
carnal0wnage's Repositories
carnal0wnage/My-Gray-Hacker-Resources
Useful for CTFs, wargames, pentesting. Educational purposes.
carnal0wnage/Auto-Backdoor
carnal0wnage/androrat
androrat
carnal0wnage/awsdit
AWS Audit (solutions/options) that anybody can afford.
carnal0wnage/RootTheBox
A Game of Hackers (CTF Scoreboard & Game Manager)
carnal0wnage/scripts
A collection of questionably useful scripts
carnal0wnage/ARF
Advanced Reconnaissance Framework
carnal0wnage/autopwn
Specify targets and run sets of tools against them
carnal0wnage/backdoor-pyc
Patch pyc files with your code. Fairly lame.
carnal0wnage/ioc_parser
Tool to extract indicators of compromise from security reports in PDF format
carnal0wnage/jboss_autoexploit
JBoss JMXInvokerServlet JMXInvoker 0.3 - Remote Command Execution 漏洞批量检测
carnal0wnage/mimic
A tool for covert execution in Linux.
carnal0wnage/p0wnedShell
PowerShell Runspace Post Exploitation Toolkit
carnal0wnage/autoresponder
Quick python script to automatically load NTLM hashes from Responder logs and fires up Hashcat to crack them
carnal0wnage/cowrie
Cowrie SSH Honeypot (based on kippo)
carnal0wnage/DSCompromised
carnal0wnage/Egress-Assess
Egress-Assess is a tool used to test egress data detection capabilities
carnal0wnage/exserial
Java Untrusted Deserialization Exploits Tools
carnal0wnage/honeymap
Real-time websocket stream of GPS events on a fancy SVG world map
carnal0wnage/Inveigh
Inveigh is a Windows PowerShell LLMNR/NBNS spoofer/man-in-the-middle tool
carnal0wnage/irond
irond is an an *experimental* IF-MAP 2.0 compliant MAP server written in JAVA. irond supports both basic authentication and certificate-based authentication (using X.509 certificates) of MAP clients. irond is maintained by the Trust@HsH group at the Hochschule Hannover, initial developement was carried out during the ESUKOM research project.
carnal0wnage/labs-tools
carnal0wnage/lte
lte security
carnal0wnage/PowerSCCM
PowerSCCM - PowerShell module to interact with SCCM deployments
carnal0wnage/PowerShell-Suite
carnal0wnage/PulseSensor_Amped_Arduino
Pulse Sensor Amped Arduino Code
carnal0wnage/shmoocon
Code released with Shmoocon Firetalks and Epilogue talks
carnal0wnage/sneaky-creeper
Get your APT on using social media as a tool for data exfiltration.
carnal0wnage/websocket_egress
Websocket based egress tester
carnal0wnage/Wordpress-XMLRPC-Brute-Force-Exploit
Wordpress XMLRPC System Multicall Brute Force Exploit (0day) by 1N3 @ CrowdShield