Pinned Repositories
aad-sso-enum-brute-spray
POC of SecureWorks' recent Azure Active Directory password brute-forcing vuln
AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
adconnectdump
Dump Azure AD Connect credentials for Azure AD and Active Directory
BloodHoundQueries
ConfuserEx
An open-source, free protector for .NET applications
NET-Obfuscate
Obfuscate ECMA CIL (.NET IL) assemblies to evade Windows Defender AMSI
NimPackt-v1
Nim-based assembly packer and shellcode loader for opsec & profit
phantom-dll-hollower-poc
Phantom DLL hollowing PoC
RCE-Parser
TripleCross
A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
fancysauced's Repositories
fancysauced/ptf
The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
fancysauced/ItWasAllADream
A PrintNightmare (CVE-2021-3457) Python Scanner. Scan entire subnets for hosts vulnerable to the PrintNightmare RCE
fancysauced/OffensiveNim
My experiments in weaponizing Nim (https://nim-lang.org/)
fancysauced/privilege-escalation-awesome-scripts-suite
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
fancysauced/ntlmv1-multi
NTLMv1 Multitool
fancysauced/pyenv-installer
This tool is used to install `pyenv` and friends.
fancysauced/SourcePoint
SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
fancysauced/Chisel-Strike
A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
fancysauced/C2concealer
C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
fancysauced/bofhound
Generate BloodHound compatible JSON from logs written by ldapsearch BOF and pyldapsearch
fancysauced/eyeballer
Convolutional neural network for analyzing pentest screenshots
fancysauced/BloodHound
Six Degrees of Domain Admin
fancysauced/wiresocks
A sock, with a wire, so you can tunnel all you desire.
fancysauced/ServerSetup
fancysauced/SharpHose
Asynchronous Password Spraying Tool in C# for Windows Environments
fancysauced/requests-ip-rotator
A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.
fancysauced/OffensivePipeline
OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.
fancysauced/ffuf
Fast web fuzzer written in Go
fancysauced/TokenTactics
Azure JWT Token Manipulation Toolset
fancysauced/PKINITtools
Tools for Kerberos PKINIT and relaying to AD CS
fancysauced/pypykatz
Mimikatz implementation in pure Python
fancysauced/Certipy
Tool for Active Directory Certificate Services enumeration and abuse
fancysauced/PackMyPayload
A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX
fancysauced/DefenderCheck
Identifies the bytes that Microsoft Defender flags on.
fancysauced/ProcessInjection
This program is designed to demonstrate various process injection techniques
fancysauced/Freeze
Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
fancysauced/Ivy
Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode.
fancysauced/ScareCrow
ScareCrow - Payload creation framework designed around EDR bypass.
fancysauced/Mangle
Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
fancysauced/BloodHoundQueries