ongyuann

Pinned Repositories

2021-10-12-dll-hijacking-2
DLL hijacking with exported functions
Language:C0 0 00
365-Stealer
365-Stealer is a phishing simualtion tool written in python3. It can be used to execute Illicit Consent Grant Attack.
Language:PHP0 0 00
365Inspect
A PowerShell script that automates the security assessment of Microsoft Office 365 environments.
Language:PowerShell0 0 00
Admin2Sys
Admin2Sys it's a C++ malware to escalate privileges from Administrator account to NT AUTORITY SYSTEM
Language:C++4 0 00
WinDefenderKiller
Windows Defender Killer | C++ Code Disabling Permanently Windows Defender using Registry Keys
Language:C++2 0 00

ongyuann's Repositories

ongyuann/Arcane
Arcane - A secure remote desktop application for Windows with the particularity of having a server entirely written in PowerShell and a cross-platform client (Python/QT6).
Language:PowerShell0 0
ongyuann/Awesome-BEC
Repository of attack and defensive information for Business Email Compromise investigations
0 0
ongyuann/aws_mini_ad
An Infrastructure as code proof of concept to deploy a bare minimum AD environment in AWS.
ongyuann/bindiff
Quickly find differences and similarities in disassembled code
ongyuann/business-ctf-2024
Official writeups for Business CTF 2024: The Vault Of Hope
Language:Solidity0 0
ongyuann/ChromeKatz
Dump cookies directly from Chrome process memory
Language:C++0 0
ongyuann/Coercer
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
ongyuann/convoC2
C2 infrastructure that allows Red Teamers to execute system commands on compromised hosts through Microsoft Teams.
ongyuann/CVE-2024-49113
LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113
Language:Python0 0
ongyuann/CVE-2024-49138-POC
POC exploit for CVE-2024-49138
ongyuann/DllDragon
A simple to use single-include Windows API resolver
Language:C++0 0
ongyuann/DLLHound
Find potential DLL Sideloads on your windows computer
ongyuann/DNTCaptcha.Core
DNTCaptcha.Core is a captcha generator and validator for ASP.NET Core applications
ongyuann/edr-internals
Tools for analyzing EDR agents
Language:C++0 0
ongyuann/getssl
obtain free SSL certificates from letsencrypt ACME server Suitable for automating the process on remote servers.
ongyuann/gowitness
🔍 gowitness - a golang, web screenshot utility using Chrome Headless
ongyuann/install
SCEPman | Cloud-based Certification Authority
ongyuann/liferay-portal
Language:Java0 0
ongyuann/lldext
My commands and scripts extending WinDbg
Language:JavaScript0 0
ongyuann/m365-tools
Language:Python
ongyuann/MachOView
MachOView fork
ongyuann/Magicmida
Themida unpacker
ongyuann/muraena
Muraena is an almost-transparent reverse proxy aimed at automating phishing and post-phishing activities.
Language:Go0 0
ongyuann/omaha
Google Update for Windows
ongyuann/peirates
Peirates - Kubernetes Penetration Testing tool
ongyuann/PoCEntraDeviceComplianceBypass
Simple pure PowerShell POC to bypass Entra / Intune Compliance Conditional Access Policy
ongyuann/suricata
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.
Language:C0 0
ongyuann/TokenSmith
TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and penetration tests with the tokens generated working out of the box with many popular Azure post exploitation tools.
ongyuann/VMwareWorkstation
手动上传官网的VMwareWorkstation安装包
ongyuann/xnu