Pinned Repositories
BestEdrOfTheMarket
Little AV/EDR bypassing lab for training & learning purposes
OSEP-Code-Snippets
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Powerless
Windows privilege escalation (enumeration) script designed with OSCP labs (legacy Windows) in mind
windows-coerced-authentication-methods
A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.
gladiatx0r's Repositories
gladiatx0r/BestEdrOfTheMarket
Little AV/EDR bypassing lab for training & learning purposes
gladiatx0r/windows-coerced-authentication-methods
A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.
gladiatx0r/BobTheSmuggler
"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file format, then XOR encrypt the archive and then hides inside PNG/GIF image file format (Image Polyglots).
gladiatx0r/ccmpwn
gladiatx0r/COM-Hunter
COM Hijacking VOODOO
gladiatx0r/Crassus
gladiatx0r/CrimsonEDR
Simulate the behavior of AV/EDR for malware development training.
gladiatx0r/EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
gladiatx0r/gladiatx0r.github.io
gladiatx0r/HijackLibs
Project for tracking publicly disclosed DLL Hijacking opportunities.
gladiatx0r/IOXIDResolver
IOXIDResolver.py from AirBus Security
gladiatx0r/KaynStrike
UDRL for CS
gladiatx0r/LDAPmonitor
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!
gladiatx0r/LetMeowIn
A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.
gladiatx0r/No-Consolation
A BOF that runs unmanaged PEs inline
gladiatx0r/npk
A mostly-serverless distributed hash cracking platform
gladiatx0r/pan-python
Multi-tool set for Palo Alto Networks PAN-OS, Panorama, WildFire and AutoFocus
gladiatx0r/SharpConflux
gladiatx0r/SharpEfsPotato
Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
gladiatx0r/ShellGhost
A memory-based evasion technique which makes shellcode invisible from process start to end.
gladiatx0r/Shelltropy
A technique of hiding malicious shellcode via Shannon encoding.
gladiatx0r/siphon
:alembic: Intercept stdin/stdout/stderr for any process
gladiatx0r/Snaffler
a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )
gladiatx0r/SOAPHound
SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.
gladiatx0r/Subdominator
The Internets #1 Subdomain Takeover Tool
gladiatx0r/SysWhispers
AV/EDR evasion via direct system calls.
gladiatx0r/Tartarus-TpAllocInject
gladiatx0r/traitor
:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
gladiatx0r/TypeScript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
gladiatx0r/wmiexec-Pro
New generation of wmiexec.py