Pinned Repositories
atomic-red-team
Small and highly portable detection tests.
AutoClicker
Simple Program that automatically clicks on the screen
Base64
Base64 Raw Files
byob
BYOB (Build Your Own Botnet)
CarbonBlackProtect
API Scripts for Carbon Black Protect
CarbonBlackResponse
Scripts created and used with Carbon Black Response
LogManagement
Different scripts for log management
SoYouWannaBeAnAMSIProvider
Simple AMSI Provider that can use yara rules to match and block content.
subTee-gits-backups
subTee gists code backups
cparmn's Repositories
cparmn/Base64
Base64 Raw Files
cparmn/CarbonBlackResponse
Scripts created and used with Carbon Black Response
cparmn/LogManagement
Different scripts for log management
cparmn/SoYouWannaBeAnAMSIProvider
Simple AMSI Provider that can use yara rules to match and block content.
cparmn/atomic-red-team
Small and highly portable detection tests.
cparmn/AutoClicker
Simple Program that automatically clicks on the screen
cparmn/byob
BYOB (Build Your Own Botnet)
cparmn/CarbonBlackProtect
API Scripts for Carbon Black Protect
cparmn/cbapi-python
Carbon Black API - Python language bindings
cparmn/CBR-EventExport
cparmn/CodeExecutionOnWindows
A list of ways to execute code on Windows using legitimate Windows tools
cparmn/cparmn.github.io
Build a Jekyll blog in minutes, without touching the command line.
cparmn/csharp
Various C# projects for offensive security
cparmn/ETWTrace
Script to preform ETW trace
cparmn/Excel4-DCOM
PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
cparmn/Exchange-AD-Privesc
Exchange privilege escalations to Active Directory
cparmn/iTerm2-Color-Schemes
Over 200 terminal color schemes/themes for iTerm/iTerm2 (with ports to Terminal, Konsole, PuTTY, Xresources, XRDB, Remina, Termite, XFCE, Tilda, FreeBSD VT, and Terminator)
cparmn/Linux_Scripts
Linux Scripts
cparmn/LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
cparmn/metasploit-execute-assembly
Custom Metasploit post module to executing a .NET Assembly from Meterpreter session
cparmn/osquery-attck
Mapping the MITRE ATT&CK Matrix with Osquery
cparmn/Packages
Random Packages
cparmn/pia-openvpn-client
cparmn/PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
cparmn/pupy
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python
cparmn/pywintrace
ETW Python Library
cparmn/Random_Code
This is Random snippets of code
cparmn/refactored-memory
Thanks github for the Awesome name. Who really knows what you'll find in here.
cparmn/sdk-api
Public contributions for win32 API documentation
cparmn/windowsserverdocs
Public content repository for Windows Server 2016 content.