cwinfosec

cwinfosec's Stars

• artidoro/qlora

  QLoRA: Efficient Finetuning of Quantized LLMs

  Language:Jupyter Notebook10k84248820

• logancyang/obsidian-copilot

  THE Copilot in Obsidian

  Language:TypeScript2.7k28378189

• CyberSecurityUP/OSCE3-Complete-Guide

  OSWE, OSEP, OSED, OSEE

  2.6k761538

• center-for-threat-informed-defense/adversary_emulation_library

  An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

  Language:C1.7k14371310

• vxunderground/VX-API

  Collection of various malicious functionality to aid in malware development

  Language:C++1.4k4413250

• 0x09AL/RdpThief

  Extracting Clear Text Passwords from mstsc.exe using API Hooking.

  Language:C++1.2k343353

• netero1010/EDRSilencer

  A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.

  Language:C1.1k139140

• dirkjanm/adidnsdump

  Active Directory Integrated DNS dumping by any authenticated user

  Language:Python9071811109

• The-Viper-One/PsMapExec

  A PowerShell tool that takes strong inspiration from CrackMapExec / NetExec

  Language:PowerShell8648696

• xx0hcd/Malleable-C2-Profiles

  Cobalt Strike - Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike https://www.cobaltstrike.com/.

  759210157

• DebugPrivilege/InsightEngineering

  Hardcore Debugging

  71026185

• frkngksl/Shoggoth

  Shoggoth: Asmjit Based Polymorphic Encryptor

  Language:C++66512686

• lsecqt/OffensiveCpp

  This repo contains C/C++ snippets that can be handy in specific offensive scenarios.

  Language:C++6296070

• VirtualAlllocEx/DEFCON-31-Syscalls-Workshop

  Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".

  Language:C61510090

• fortra/No-Consolation

  A BOF that runs unmanaged PEs inline

  Language:C5335261

• clearbluejar/ghidriff

  Python Command-Line Ghidra Binary Diffing Engine

  Language:Python51077223

• senzee1984/Amsi_Bypass_In_2023

  Amsi Bypass payload that works on Windwos 11

  Language:PowerShell3693065

• peasead/elastic-container

  Stand up a simple Elastic container with Kibana, Fleet, and the Detection Engine

  Language:Shell362102862

• daem0nc0re/VectorKernel

  PoCs for Kernelmode rootkit techniques research.

  Language:C#33311247

• S3cur3Th1sSh1t/Ruy-Lopez

  Language:C2916132

• Wh04m1001/CVE-2023-36874

  Language:C++2345347

• slemire/WSPCoerce

  PoC to coerce authentication from Windows hosts using MS-WSP

  Language:C#2192031

• TakahiroHaruyama/VDR

  Vulnerable driver research tool, result and exploit PoCs

  Language:Python1783027

• V-i-x-x/AMSI-BYPASS

  "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS

  Language:PowerShell1774136

• susMdT/LoudSunRun

  Stack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven

  Language:C1513124

• x42en/sysplant

  Your syscall factory

  Language:Nim1225012

• BishopFox/forticrack

  Decrypt encrypted Fortienet FortiOS firmware images

  Language:Python863020

• NVISOsecurity/cs2br-bof

  Language:C562014

• MythicAgents/freyja

  Freyja is a Golang, Purple Team agent that compiles into Windows, Linux and macOS x64 executables.

  Language:Go464310

• toshyak/tf-vpn-proxy

  Terraform configuration to run droplet in DigitalOcean with SOCKS5 and IPsec VPN

  Language:HCL3101