nullarmor's Stars
S3cur3Th1sSh1t/Caro-Kann
Encrypted shellcode Injection to avoid Kernel triggered memory scans
Bw3ll/sharem
SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also contains its own custom disassembler, with many innovative features, such as being able to show the deobfuscated disassembly of an encoded shellcode, or integrating emulation data to enhance the disassembly.
hashtopolis/server
Hashtopolis - distributed password cracking with Hashcat
evilsocket/legba
A multiprotocol credentials bruteforcer / password sprayer and enumerator. 🥷
S1lkys/SharpKiller
Lifetime AMSI bypass by @ZeroMemoryEx ported to .NET Framework 4.8
TheWover/donut
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
outflanknl/Dumpert
LSASS memory dumper using direct system calls and API unhooking.
SaadAhla/UnhookingPatch
Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime
boku7/azureOutlookC2
Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for North Korean APT InkySquid / ScarCruft / APT37. TTP: Use Microsoft Graph API for C2 Operations.
bytecode77/r77-rootkit
Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.
0xe7/RoastInTheMiddle
HotCakeX/Harden-Windows-Security
Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Personal, Enterprise, Government and Military security levels | Read The Rationale https://github.com/HotCakeX/Harden-Windows-Security/blob/main/Rationale.md
huuck/Katalina
Katalina is like Unicorn but for Dalvik bytecode. It provides an environment that can execute Android bytecode one instruction at a time.
alexhude/uEmu
Tiny cute emulator plugin for IDA based on unicorn.
fkie-cad/FACT_core
Firmware Analysis and Comparison Tool
sse-secure-systems/TeamsEnum
User Enumeration of Microsoft Teams users via API
Octoberfest7/TeamsPhisher
Send phishing messages and attachments to Microsoft Teams users
stealth/sshttp
SSH/HTTP(S) multiplexer. Run a webserver and a sshd on the same port w/o changes.
stealth/fraud-bridge
ICMP and DNS tunneling via IPv4 and IPv6
ihebski/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
witchfindertr/Jlaive
.NET Antivirus Evasion Tool (Exe2Bat)
HenryHoggard/awesome-arm-exploitation
A collection of awesome videos, articles, books and resources about ARM exploitation.
Zeyad-Azima/Offensive-Resources
A Huge Learning Resources with Labs For Offensive Security Players
klezVirus/chameleon
PowerShell Script Obfuscator
imthenachoman/How-To-Secure-A-Linux-Server
An evolving how-to guide for securing a Linux server.
byt3bl33d3r/OffensiveNim
My experiments in weaponizing Nim (https://nim-lang.org/)
Integration-IT/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
dirkjanm/ROADtools
A collection of Azure AD/Entra tools for offensive and defensive security purposes
ly4k/Certipy
Tool for Active Directory Certificate Services enumeration and abuse
nicocha30/ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.