clod81

Tier Zero Security

Pinned Repositories

block_service_workers
Extension to block Service Workers registration in Chrome (also see https://shadow-workers.github.io )
Language:JavaScript43 7 139
jemquarie
Jemquarie provides an easy way to interact with Macquarie ESI api. For Ruby and Ruby on Rails.
Language:Ruby11
KExecDD-gdrv-loader
https://github.com/floesen/KExecDD with https://github.com/v1k1ngfr/gdrv-loader/ to calculate offset of g_CiOptions instead of static
Language:C21
loader_process_hollow_copy_in_chunk
About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once
Language:C#12 2 01
loader_process_hollow_decode_after_initial_write
C# loader that copies an encoded shellcode in memory in a suspended process and decodes it byte by byte afterwards
Language:C#31
orpheus
Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types
Language:Python10
shellcode_runner_copy_encoded_decode_after
C# loader that copies an encoded shellcode in memory and decodes after the initial memory write
Language:C#8 2 13
shellcode_runner_copy_in_chunk
C# loader that copies a chunk at the time of the shellcode in memory, rather that all at once
Language:C#23 3 06
shadow-workers
Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)
Language:JavaScript220 9 246

clod81's Repositories

clod81/block_service_workers
Extension to block Service Workers registration in Chrome (also see https://shadow-workers.github.io )
Language:JavaScript43 7 139
clod81/shellcode_runner_copy_in_chunk
C# loader that copies a chunk at the time of the shellcode in memory, rather that all at once
Language:C#23 3 06
clod81/loader_process_hollow_copy_in_chunk
About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once
Language:C#12 2 01
clod81/shellcode_runner_copy_encoded_decode_after
C# loader that copies an encoded shellcode in memory and decodes after the initial memory write
Language:C#8 2 13
clod81/loader_process_hollow_decode_after_initial_write
C# loader that copies an encoded shellcode in memory in a suspended process and decodes it byte by byte afterwards
Language:C#31
clod81/KExecDD-gdrv-loader
https://github.com/floesen/KExecDD with https://github.com/v1k1ngfr/gdrv-loader/ to calculate offset of g_CiOptions instead of static
Language:C21
clod81/jemquarie
Jemquarie provides an easy way to interact with Macquarie ESI api. For Ruby and Ruby on Rails.
Language:Ruby11
clod81/orpheus
Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types
Language:Python10
clod81/aad-sso-enum-brute-spray
POC of SecureWorks' recent Azure Active Directory password brute-forcing vuln
Language:PowerShell0 1 00
clod81/brown-bags
clod81/ChromeHttpRequestBlocker
Chrome extension that allows blocking HTTP request based on URL pattern definitions.
Language:JavaScript1 0
clod81/Creds
Some usefull Scripts and Executables for Pentest & Forensics
Language:PowerShell1 0
clod81/cuddlephish
Weaponized Browser-in-the-Middle (BitM) for Penetration Testers
Language:HTML
clod81/D-Pwn
D/Invoke standalone shellcode runners
clod81/DInvoke
Dynamically invoke arbitrary unmanaged code from managed code without P/Invoke.
clod81/eaphammer
Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks.
Language:C2 0
clod81/EDRSandblast-GodFault
EDRSandblast-GodFault
clod81/evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
clod81/gmapsapiscanner
Language:Python2 0
clod81/metasploit-framework
Metasploit Framework
Language:Ruby
clod81/Neo-reGeorg
Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
clod81/OSEP-Code-Snippets
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
clod81/owasp-mstg
The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.
clod81/SharpDPAPI
SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.
Language:C#
clod81/Shhhloader
SysWhispers Shellcode Loader (Work in Progress)
clod81/steganography
Simple C++ Image Steganography tool to encrypt and hide files insde images using Least-Significant-Bit encoding.
clod81/STFUEDR
Silence EDRs by removing kernel callbacks
Language:C++1 0
clod81/Toggle_Token_Privileges_BOF
Syscall BOF to arbitrarily add/detract process token privilege rights.
Language:C
clod81/token-incrementor
Burp extension to increment a parameter in each active scan request
Language:Java2 0
clod81/Walrus
An Android app that lets you use your access control card cloning devices in the field.
Language:Java3 0