nmbshiva

nmbshiva's Stars

• infosecn1nja/AD-Attack-Defense

  Attack and defend active directory using modern post exploitation adversary tradecraft activity

  4.4k22351k

• fancycode/MemoryModule

  Library to load a DLL from memory.

  Language:C2.8k17078755

• stephenfewer/ReflectiveDLLInjection

  Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

  Language:C2.7k12715771

• p0dalirius/Coercer

  A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.

  Language:Python1.8k2359180

• fin3ss3g0d/evilgophish

  evilginx3 + gophish

  Language:Go1.6k356306

• jthuraisamy/SysWhispers2

  AV/EDR evasion via direct system calls.

  Language:Assembly1.5k4015234

• wavestone-cdt/EDRSandblast

  Language:C1.5k3815273

• Flangvik/TeamFiltration

  TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts

  Language:C#1k1139112

• tevora-threat/SharpView

  C# implementation of harmj0y's PowerView

  Language:C#993228188

• mgeeky/PackMyPayload

  A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX

  Language:Python849178134

• antonioCoco/JuicyPotatoNG

  Another Windows Local Privilege Escalation from Service Account to System

  Language:C++79611499

• Idov31/Sandman

  Sandman is a NTP based backdoor for red team engagements in hardened networks.

  Language:C#767132106

• Group3r/Group3r

  Find vulnerabilities in AD Group Policy, but do it better than Grouper2 did.

  Language:C#674101059

• Dewera/Lunar

  A lightweight native DLL mapping library that supports mapping directly from memory

  Language:C#5842637102

• akamai/akamai-security-research

  This repository includes code and IoCs that are the product of research done in Akamai's various security research teams.

  Language:C41524257

• testanull/ProxyNotShell-PoC

  Language:Python4027586

• ConsciousHacker/WFH

  Language:Python4019169

• Octoberfest7/XLL_Phishing

  XLL Phishing Tradecraft

  Language:C3908078

• fin3ss3g0d/cypherhound

  Python3 terminal application that contains 405 Neo4j cyphers for BloodHound data sets and 388 GUI cyphers

  Language:Python3726129

• hAPI-hacker/Hacking-APIs

  35113083

• Tw1sm/RITM

  Roast in the Middle

  Language:Python2651027

• tyranid/blackhat-usa-2022-demos

  Demos for the Blackhat USA 2022 talk "Taking Kerberos to the Next Level"

  Language:PowerShell2587025

• voidz0r/CVE-2022-44268

  A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read

  Language:Rust2122224

• ustayready/golddigger

  Language:Python1814023

• fortra/CreateProcess

  A small PoC that creates processes in Windows

  Language:C1725034

• SpikySabra/Kernel-Cactus

  It's pointy and it hurts!

  Language:C1228221

• dsnezhkov/TruffleSnout

  Iterative AD discovery toolkit for offensive operations

  Language:C#853119

• plackyhacker/AMSI-Bypass

  Another AMSI bypass - but in C++.

  Language:C++251211

• snovvcrash/CrackMapExec

  A swiss army knife for pentesting networks

  Language:Python25206

• claissg/remote_amsi_bypass

  Kill AMSI in a remote process PoC

  Language:C#101