m0nk336

m0nk336's Stars

• 0xStarlight/CRTP-Notes

  Study materials for the Certified Red Team Pentesting (CRTP) exam, covering essential concepts in red teaming and penetration testing

  33768

• bdamele/icmpsh

  Simple reverse ICMP shell

  Language:C1.6k415

• s0md3v/Photon

  Incredibly fast crawler designed for OSINT.

  Language:Python11.4k1.5k

• outflanknl/Dumpert

  LSASS memory dumper using direct system calls and API unhooking.

  Language:C1.5k243

• ShutdownRepo/ShadowCoerce

  MS-FSRVP coercion abuse PoC

  Language:Python28737

• gtworek/Priv2Admin

  Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.

  2.1k283

• EvanMcBroom/lsa-whisperer

  Tools for interacting with authentication packages using their individual message protocols

  Language:C++31028

• jthuraisamy/SysWhispers

  AV/EDR evasion via direct system calls.

  Language:Assembly1.9k266

• MzHmO/SymProcAddress

  Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)

  Language:C++14218

• klezVirus/SilentMoonwalk

  PoC Implementation of a fully dynamic call stack spoofer

  Language:C++75398

• Helixo32/CrimsonEDR

  Simulate the behavior of AV/EDR for malware development training.

  Language:C51744

• tastypepperoni/PPLBlade

  Protected Process Dumper Tool

  Language:Go54359

• login-securite/DonPAPI

  Dumping DPAPI credz remotely

  Language:Python1.1k127

• lkarlslund/ldapnomnom

  Quietly and anonymously bruteforce Active Directory usernames at insane speeds from Domain Controllers by (ab)using LDAP Ping requests (cLDAP)

  Language:Go1k80

• WithSecureLabs/CallStackSpoofer

  A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)

  Language:C++47364

• susMdT/LoudSunRun

  Stack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven

  Language:C21127

• kevoreilly/CAPEv2

  Malware Configuration And Payload Extraction

  Language:Python2.3k441

• gabriellandau/PPLFault

  Language:C51982

• pard0p/CallstackSpoofingPOC

  C++ self-Injecting dropper based on various EDR evasion techniques.

  Language:C36967

• bats3c/ADCSPwn

  A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.

  Language:C#829127

• Mr-Un1k0d3r/SCShell

  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command

  Language:C1.5k247

• xenoscr/manual-syscall-detect

  A tool for detecting manual/direct syscalls in x86 and x64 processes using Nirvana Hooks.

  Language:C++10923

• jackullrich/syscall-detect

  PoC capable of detecting manual syscalls from usermode.

  Language:C++19129

• n0mi1k/pmkidcracker

  A tool to crack WPA2 passphrase with PMKID value without clients or de-authentication

  Language:Python21028

• Mr-Robert0/Logsensor

  A Powerful Sensor Tool to discover login panels, and POST Form SQLi Scanning

  Language:Python48487

• BC-SECURITY/Moriarty

  Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in Windows environments.

  Language:C#51165

• GetRektBoy724/SyscallShuffler

  Your NTDLL vaccine from modern direct syscall methods.

  Language:C#358

• ticarpi/jwt_tool

  :snake: A toolkit for testing, tweaking and cracking JSON Web Tokens

  Language:Python5.7k695

• dirkjanm/BloodHound.py

  A Python based ingestor for BloodHound

  Language:Python2.1k336

• dremin/RetroBar

  Classic Windows 95, 98, Me, 2000, XP, Vista taskbar for modern versions of Windows

  Language:C#3.2k276