Pinned Repositories
Active-Directory-Kill-Chain-Attack-Defense
Here we are elaborating the tactics, techniques, and procedures (TTPs) attackers are leveraging to compromise active directory and guidance to mitigation, detection, and prevention. And understand Active Directory Kill Chain Attack and Modern Post Exploitation Adversary Tradecraft Activity.
airixss
Finding XSS during recon
burp-bounty-profiles
Burp Bounty profiles compilation, feel free to contribute!
HandleKatz
PIC lsass dumper using cloned handles
magisk-frida
You are probably looking for: https://github.com/ViRb3/magisk-frida
Pentest-Tools
REW-sploit
Emulate and Dissect MSF and *other* attacks
Scrummage
The Ultimate OSINT and Threat Hunting Framework
joel-correa's Repositories
joel-correa/Pentest-Tools
joel-correa/Scrummage
The Ultimate OSINT and Threat Hunting Framework
joel-correa/airixss
Finding XSS during recon
joel-correa/apache-log4j-poc
Apache Log4j POC
joel-correa/API-SecurityEmpire
API Security Projecto aims to present unique attack & defense methods in API Security field
joel-correa/awesome-privilege-escalation
A curated list of awesome privilege escalation
joel-correa/awesome-threat-intelligence
A curated list of Awesome Threat Intelligence resources
joel-correa/cloudmapper
CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
joel-correa/CVE-2021-1965
CVE-2021-1965 WiFi Zero Click RCE Trigger PoC
joel-correa/CVE-2021-44228-Apache-Log4j-Rce
Apache Log4j 远程代码执行
joel-correa/EDRHunt
Scan installed EDRs and AVs on Windows
joel-correa/EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
joel-correa/Evilginx2-Phishlets
Evilginx3 Phishlets version (0.2.3 & above) Only For Testing/Learning Purposes
joel-correa/FullBypass
A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell. Feel free to modiy and DM if you find some bugs :)
joel-correa/JNDIExploit
A malicious LDAP server for JNDI injection attacks
joel-correa/Khepri
Free,Open-Source,Cross-platform agent and Post-exploiton tool written in Golang and C++.
joel-correa/LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
joel-correa/nusantara
SOC
joel-correa/opik
Open-source end-to-end LLM Development Platform
joel-correa/PaywallHub
PaywallHub project.
joel-correa/pyWhat
🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙♀️
joel-correa/Rafel-Rat
-------> RAFEL<------ Android Rat Written in Java With WebPanel For Controlling Victims...Hack Android Devices
joel-correa/RedTeam-Resources
joel-correa/ReflectiveDLLInjection
Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.
joel-correa/ScareCrow
ScareCrow - Payload creation framework designed around EDR bypass.
joel-correa/unipacker
Automatic and platform-independent unpacker for Windows binaries based on emulation
joel-correa/VBoxCloak
A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to evade analysis. Guaranteed to bring down your pafish ratings by at least a few points ;)
joel-correa/VMwareCloak
A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analysis.
joel-correa/vulnhuntr
Zero shot vulnerability discovery using LLMs
joel-correa/Windows-auditing-mindmap
Set of Mindmaps providing a detailed overview of the different #Windows auditing capacities and event log files.