Pinned Repositories
Galvatron
Powershell fork of Monohard by Carlos Ganoza P. This botnet/backdoor was designed to egress over unecrypted web using very little, but effective obfuscation. Egress over ICMP and DNS are planned as features. Lastly, the server code is designed to setup the C2 on a LAMP-esque server. The default creds are admin/admin.
MacroShop
Collection of scripts to aid in delivering payloads via Office Macros. Most are python. See http://khr0x40sh.wordpress.com for details.
malwareanalysis
snippets related to malware analysis
metasploit-modules
ms16-032
ms16_032_DLL
DLL of MS16-032 Exploit
PowerSurfer
A powershell based traffic generation scripts to simulate user activity via Internet Explorer
PowerW0rm
WhiteListEvasion
Collection of scripts, binaries and the like to aid in WhiteList Evasion on a Microsoft Windows Network.
khr0x40sh's Repositories
khr0x40sh/nsa-rules
Password cracking rules and masks for hashcat that I generated from cracked passwords.
khr0x40sh/embedps
khr0x40sh/MacroShop
Collection of scripts to aid in delivering payloads via Office Macros. Most are python. See http://khr0x40sh.wordpress.com for details.
khr0x40sh/metasploit-modules
khr0x40sh/metasploit-framework
Metasploit Framework
khr0x40sh/badkarma
khr0x40sh/mimikittenz
A post-exploitation powershell tool for extracting juicy info from memory.
khr0x40sh/ms16-032
khr0x40sh/ms16_032_DLL
DLL of MS16-032 Exploit
khr0x40sh/win_exp
khr0x40sh/PowerShell-Suite
khr0x40sh/shellsploit-framework
New Generation Exploit Development Kit
khr0x40sh/Veil-Evasion
Veil-Evasion is a tool used to generate payloads that bypass antivirus solutions
khr0x40sh/icmpsh
Simple reverse ICMP shell
khr0x40sh/EvilNetConnectionWMIProvider
khr0x40sh/WhiteListEvasion
Collection of scripts, binaries and the like to aid in WhiteList Evasion on a Microsoft Windows Network.
khr0x40sh/OutlookPersistence
khr0x40sh/PowerSurfer
A powershell based traffic generation scripts to simulate user activity via Internet Explorer
khr0x40sh/PowerW0rm
khr0x40sh/sharpratworm
Automatically exported from code.google.com/p/sharpratworm
khr0x40sh/kismetearth-net
Automatically exported from code.google.com/p/kismetearth-net