Pinned Repositories
BestEdrOfTheMarket
Little AV/EDR bypassing lab for training & learning purposes
DCOMUploadExec
DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
OSEP-Code-Snippets
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Powerless
Windows privilege escalation (enumeration) script designed with OSCP labs (legacy Windows) in mind
gladiatx0r's Repositories
gladiatx0r/BestEdrOfTheMarket
Little AV/EDR bypassing lab for training & learning purposes
gladiatx0r/DCOMUploadExec
DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
gladiatx0r/BobTheSmuggler
"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file format, then XOR encrypt the archive and then hides inside PNG/GIF image file format (Image Polyglots).
gladiatx0r/ccmpwn
gladiatx0r/Crassus
gladiatx0r/CrimsonEDR
Simulate the behavior of AV/EDR for malware development training.
gladiatx0r/EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
gladiatx0r/emptyrepo
just an empty repo
gladiatx0r/gcpwn
Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @WebbinRoot
gladiatx0r/gladiatx0r.github.io
gladiatx0r/HijackLibs
Project for tracking publicly disclosed DLL Hijacking opportunities.
gladiatx0r/IOXIDResolver
IOXIDResolver.py from AirBus Security
gladiatx0r/JarPlant
Java archive implant toolkit.
gladiatx0r/LDAPmonitor
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!
gladiatx0r/LetMeowIn
A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.
gladiatx0r/LocalKdc
Info on how to use Kerberos KDC on a non-domain joined host
gladiatx0r/No-Consolation
A BOF that runs unmanaged PEs inline
gladiatx0r/pan-python
Multi-tool set for Palo Alto Networks PAN-OS, Panorama, WildFire and AutoFocus
gladiatx0r/SharpConflux
gladiatx0r/SharpEfsPotato
Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
gladiatx0r/SharpExShell
SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
gladiatx0r/ShellGhost
A memory-based evasion technique which makes shellcode invisible from process start to end.
gladiatx0r/siphon
:alembic: Intercept stdin/stdout/stderr for any process
gladiatx0r/Snaffler
a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )
gladiatx0r/SOAPHound
SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.
gladiatx0r/Subdominator
The Internets #1 Subdomain Takeover Tool
gladiatx0r/SysWhispers
AV/EDR evasion via direct system calls.
gladiatx0r/Tartarus-TpAllocInject
gladiatx0r/TypeScript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
gladiatx0r/wmiexec-Pro
New generation of wmiexec.py