joeleonjr

Security Researcher

@FortyNorthSecurity

Pinned Repositories

noisy-recon
A simple enumeration script for CTFs / OSCP. Very noisy. Uses nmap, gobuster, nikto and more.
4 0 01
pretext-project.github.io
Open-Source Collection of Social Engineering Pretexts
Language:CSS129 8 019
C2concealer
C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
Language:Python1k 25 6170
EXCELntDonut
Excel 4.0 (XLM) Macro Generator for injecting DLLs and EXEs into memory.
Language:Python499 20 1196

joeleonjr's Repositories

joeleonjr/noisy-recon
A simple enumeration script for CTFs / OSCP. Very noisy. Uses nmap, gobuster, nikto and more.
4 0 01
joeleonjr/API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
0 0
joeleonjr/b2xtranslator
.NET Core library to convert Microsoft Office binary files (doc, xls and ppt) to Open XML (docx, xlsx and pptx).
Language:C#0 0
joeleonjr/BOFs
Collection of Beacon Object Files
Language:C++0 0
joeleonjr/calc_security_poc
A sample of proof of concept scripts that run Calc.exe with full source code.
Language:C++0 0
joeleonjr/canary_test
1 0
joeleonjr/CLRvoyance
Managed assembly shellcode generation
Language:Assembly0 0
joeleonjr/Fetters
Port of Seatbelt in F#
Language:F#0 0
joeleonjr/FSharp-Shellcode
F# Implementation to spawn shellcode
Language:F#0 0
joeleonjr/GadgetToJScript
A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from JS/VBS/VBA based scripts.
Language:C#0 0
joeleonjr/GhostLoader
GhostLoader - AppDomainManager - Injection - 攻壳机动队
Language:C#0 0
joeleonjr/http-garden
Differential testing and fuzzing of HTTP servers and proxies
Language:Python0 0
joeleonjr/kali_setup
Simple bash script to load useful tools / settings into a new Kali Linux box.
Language:Shell1 02
joeleonjr/kiterunner
Contextual Content Discovery Tool
Language:Go0 0
joeleonjr/MaliciousMacroMSBuild
Generates Malicious Macro and Execute Powershell or Shellcode via MSBuild Application Whitelisting Bypass.
Language:Python0 0
joeleonjr/Markdown-XSS-Payloads
XSS payloads for exploiting Markdown syntax
0 0
joeleonjr/NamedPipePTH
Pass the Hash to a named pipe for token Impersonation
Language:PowerShell0 0
joeleonjr/newtool
Language:Python
joeleonjr/SharpSQLDump
内网渗透中快速获取数据库所有库名，表名，列名。具体判断后再去翻数据，节省时间。适用于mysql，mssql。
Language:C#0 0
joeleonjr/SharPyShell
SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications
Language:Python0 0
joeleonjr/Shr3dKit
Red Team Tool Kit
Language:Shell0 0
joeleonjr/test
joeleonjr/test2
1 0
joeleonjr/trigen
Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.
Language:Python0 0
joeleonjr/unwebpack-sourcemap
Extract uncompiled, uncompressed SPA code from Webpack source maps.
Language:Python0 0
joeleonjr/Veil
Veil 3.1.X (Check version info in Veil at runtime)
Language:Python0 0
joeleonjr/xxe-injection-payload-list
🎯 XML External Entity (XXE) Injection Payload List
0 0

joeleonjr

Pinned Repositories

noisy-recon

pretext-project.github.io

C2concealer

EXCELntDonut

joeleonjr's Repositories

joeleonjr/noisy-recon

joeleonjr/API-Security-Checklist

joeleonjr/b2xtranslator

joeleonjr/BOFs

joeleonjr/calc_security_poc

joeleonjr/canary_test

joeleonjr/CLRvoyance

joeleonjr/Fetters

joeleonjr/FSharp-Shellcode

joeleonjr/GadgetToJScript

joeleonjr/GhostLoader

joeleonjr/http-garden

joeleonjr/kali_setup

joeleonjr/kiterunner

joeleonjr/MaliciousMacroMSBuild

joeleonjr/Markdown-XSS-Payloads

joeleonjr/NamedPipePTH

joeleonjr/newtool

joeleonjr/SharpSQLDump

joeleonjr/SharPyShell

joeleonjr/Shr3dKit

joeleonjr/test

joeleonjr/test2

joeleonjr/trigen

joeleonjr/unwebpack-sourcemap

joeleonjr/Veil

joeleonjr/xxe-injection-payload-list