lefayjey
Penetration Tester, Red-Purple Teamer, Ethical Hacker | OSCP, OSWE, OSEP, RTO, RTL, CARTP, ECIHv2
lefayjey's Stars
Hannibal046/Awesome-LLM
Awesome-LLM: a curated list of Large Language Model
sensepost/gowitness
🔍 gowitness - a golang, web screenshot utility using Chrome Headless
corca-ai/awesome-llm-security
A curation of awesome tools, documents and projects about LLM Security.
gatariee/gocheck
Because AV evasion should be easy.
SafeBreach-Labs/CVE-2024-49113
LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113
ricardojoserf/TrickDump
Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!
deepinstinct/DCOMUploadExec
DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
logangoins/Krueger
Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC
dobin/RedEdr
Collect Windows telemetry for Maldev
SecuraBV/Timeroast
Timeroasting scripts by Tom Tervoort
mvelazc0/msInvader
M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response capabilities.
MaLDAPtive/Invoke-Maldaptive
MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.
Enelg52/KittyStager
KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this project is to be able to have a web server and some kitten and be able to use the with any shellcode.
ricardojoserf/NativeBypassCredGuard
Bypass Credential Guard by patching WDigest.dll using only NTAPI functions
0xsp-SRD/ZigStrike
ZigStrike, a powerful Payload Delivery Pipeline developed in Zig, offering a variety of injection techniques and anti-sandbox features.
WithSecureLabs/damn-vulnerable-llm-agent
ajm4n/DLLHound
Find potential DLL Sideloads on your windows computer
Malcrove/SeamlessPass
A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO
safedv/RustSoliloquy
A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and indirect NTAPIs for core operations.
ottosulin/awesome-ai-security
A collection of awesome resources related AI security
Macmod/ldapx
Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.
C5Hackr/Phantom
MWR-CyberSec/AD-CS-Forest-Exploiter
Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
mik0w/pallms
Payloads for Attacking Large Language Models
joey-melo/netcredz
With zero dependencies, NetCredz extracts credentials from pcap files or live traffic, supporting NTLM, LDAP, HTTP, SMTP, SNMP, Telnet, FTP, and Kerberos, while also detecting DHCPv6 and LLMNR traffic. Inspired by PCredz from Laurent Gaffie
Retr0-code/hash-dumper
Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already saved SAM and SYSTEM hives.
jojonas/SharpSAMDump
SAM Dumping in C#
ScottLogic/prompt-injection
Application which investigates defensive measures against prompt injection attacks on an LLM, with a focus on the exposure of external tools.
evenfurther/findkeepassword
Find your lost keepass master password from a list of candidates
barcrange/CVE-2024-49113-Checker