Pinned Repositories
-windows_service.c-
1PasswordSuite
Utilities to extract secrets from 1Password
A-Red-Teamer-diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
aad-sso-enum-brute-spray
POC of SecureWorks' recent Azure Active Directory password brute-forcing vuln
AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
aced
ChaiLdr
AV bypass while you sip your Chai!
dannymas
pruebas
Jomungand
Shellcode Loader with memory evasion
WinDefenderKiller
Windows Defender Killer | C++ Code Disabling Permanently Windows Defender using Registry Keys
dannymas's Repositories
dannymas/ADCSCoercePotato
dannymas/BadExclusions
BadExclusions is a tool to identify folder custom or undocumented exclusions on AV/EDR
dannymas/BadExclusionsNWBO
BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR
dannymas/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability
Microsoft-Outlook-Remote-Code-Execution-Vulnerability
dannymas/CVE-2024-23897
CVE-2024-23897 | Jenkins <= 2.441 & <= LTS 2.426.2 PoC and scanner.
dannymas/CVE-2024-25600
Unauthenticated Remote Code Execution – Bricks <= 1.9.6
dannymas/de4py
toolkit for python reverse engineering
dannymas/Detect-It-Easy
Program for determining types of files for Windows, Linux and MacOS.
dannymas/Disable-Windows-Defender-
Disable Windows Defender (+ UAC Bypass, + Upgrade to SYSTEM)
dannymas/DLLProxying-rs
a simple implementation of Proxy-DLL-Loads in Rust
dannymas/esp32-wifi-penetration-tool
Exploring possibilities of ESP32 platform to attack on nearby Wi-Fi networks.
dannymas/FullBypass
A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell. Feel free to modiy and DM if you find some bugs :)
dannymas/HEKATOMB
Hekatomb is a python script that connects to LDAP directory to retrieve all computers and users informations. Then it will download all DPAPI blob of all users from all computers and uses Domain backup keys to decrypt them.
dannymas/InflativeLoading
Dynamically convert a native EXE to PIC shellcode by appending a shellcode stub
dannymas/MultiDump
MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
dannymas/nomore403
Tool to bypass 403/40X response codes.
dannymas/ntlm_relay_gat
dannymas/Pentest-Everything
A collection of CTF write-ups, pentesting topics, guides and notes. Notes compiled from multiple sources and my own lab research. Topics also support OSCP, Active Directory, CRTE, eJPT and eCPPT.
dannymas/pyCraft
Minecraft-client networking library in Python
dannymas/SharpADWS
Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).
dannymas/smw
Smw
dannymas/SOAPHound
SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.
dannymas/Spartacus
Spartacus DLL/COM Hijacking Toolkit
dannymas/SQLi_Sleeps
dannymas/sshuttle
Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.
dannymas/SUDO_KILLER
A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.
dannymas/ThievingFox
dannymas/UAC-BOF-Bonanza
Collection of UAC Bypass Techniques Weaponized as BOFs
dannymas/windows
Windows in a Docker container.
dannymas/xchg2pwn.github.io
Source code for webpage