Pinned Repositories
Certipy
Tool for Active Directory Certificate Services enumeration and abuse
ElevateKit
The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
GetLAPSPassword
A LAPS dumper written using the impacket library.
gorgon
impacket-driverquery
A modified version of wmiquery.py used for remote driver enumeration via WMI
MiniDumpFS
Parse minidump files from system memory dumps using Ulf Frisk's vmm library
NtCreateUserProcess
Minimal PoC developed as discuss in https://captmeelo.com/redteam/maldev/2022/05/10/ntcreateuserprocess.html
OffensiveCSharp
Collection of Offensive C# Tooling
XeroxDecrypter
A tool that leverages the Binary Ninja API to extract Xerox WorkCentre encryption keys from firmware images
dru1d-foofus's Repositories
dru1d-foofus/GetLAPSPassword
A LAPS dumper written using the impacket library.
dru1d-foofus/Certipy
Tool for Active Directory Certificate Services enumeration and abuse
dru1d-foofus/impacket-driverquery
A modified version of wmiquery.py used for remote driver enumeration via WMI
dru1d-foofus/MiniDumpFS
Parse minidump files from system memory dumps using Ulf Frisk's vmm library
dru1d-foofus/NtCreateUserProcess
Minimal PoC developed as discuss in https://captmeelo.com/redteam/maldev/2022/05/10/ntcreateuserprocess.html
dru1d-foofus/XeroxDecrypter
A tool that leverages the Binary Ninja API to extract Xerox WorkCentre encryption keys from firmware images
dru1d-foofus/OffensiveCSharp
Collection of Offensive C# Tooling
dru1d-foofus/PRESENTATIONS
A collection of public talks/presentations I have given.
dru1d-foofus/DetectionLab
Automate the creation of a lab environment complete with security tooling and logging best practices
dru1d-foofus/RasDialParamsParser
dru1d-foofus/ARRS-documentation
ARRS documentation
dru1d-foofus/ARRS-s4
dru1d-foofus/briscKernelDriver
Public disclosure of vulnerabilities identified in WindowsSCOPE kernel driver
dru1d-foofus/bsidesroanoke.github.io
dru1d-foofus/DriverParse
A tool that checks for commonly abused driver functions and whether or not they're in known driver blocklists.
dru1d-foofus/dru1d-foofus
dru1d-foofus/ExploitRemotingService
A tool to exploit .NET Remoting Services
dru1d-foofus/impacket
Impacket is a collection of Python classes for working with network protocols.
dru1d-foofus/LOLDrivers
Living Off The Land Drivers
dru1d-foofus/MemProcFS
MemProcFS
dru1d-foofus/metasploit-framework
Metasploit Framework
dru1d-foofus/MsgKit
A .NET library to make MSG files without the need for Outlook - just testing some stuff
dru1d-foofus/nutanix_terraform
A test repo for Nutanix+Terraform configuration
dru1d-foofus/rainbowcrackalack
Rainbow table generation & lookup tools.
dru1d-foofus/RoanokeChallengeWriteUp
a write-up for a random Roanoke-based CTF
dru1d-foofus/SharpHound3
C# Data Collector for the BloodHound Project, Version 3
dru1d-foofus/Shellcode-Downloader-CreateThread-Execution
This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and download and execute your C2-shellcode which is hosted on your (C2)-webserver.
dru1d-foofus/SysWhispers
AV/EDR evasion via direct system calls.
dru1d-foofus/VmmFrost
MemProcFS/Vmmsharp Wrapper for .NET6 with useful abstractions.
dru1d-foofus/WireGuardHelper
A collection of WireGuard VPN helper scripts.