panagioto

panagioto's Stars

• subat0mik/Misconfiguration-Manager

  Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.

  Language:PowerShell84785

• nicocha30/ligolo-ng

  An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

  Language:Go3.1k305

• breakpointHQ/TCC-ClickJacking

  A proof of concept for a clickjacking attack on macOS.

  Language:Swift9416

• maluramichael/dll-proxy-generator

  Creates a proxy dll which sits between the game and original dll

  Language:C++12437

• login-securite/DonPAPI

  Dumping DPAPI credz remotely

  Language:Python1.1k123

• RalfHacker/Kerbeus-BOF

  BOF for Kerberos abuse (an implementation of some important features of the Rubeus).

  Language:C41048

• Mr-Un1k0d3r/Cookie-and-Handle-Stealer

  C or BOF file to extract WebKit master key to decrypt user cookie

  Language:C18320

• pathtofile/SealighterTI

  Combining Sealighter with unpatched exploits to run the Threat-Intelligence ETW Provider

  Language:C16828

• fin3ss3g0d/cypherhound

  Python3 terminal application that contains 405 Neo4j cyphers for BloodHound data sets and 388 GUI cyphers

  Language:Python37530

• WKL-Sec/dcomhijack

  Lateral Movement Using DCOM and DLL Hijacking

  Language:Python28224

• lsecqt/OffensiveCpp

  This repo contains C/C++ snippets that can be handy in specific offensive scenarios.

  Language:C++66777

• RCStep/CSSG

  Cobalt Strike Shellcode Generator

  Language:C#648111

• wavvs/nanorobeus

  COFF file (BOF) for managing Kerberos tickets.

  Language:C28531

• ZeroMemoryEx/Terminator

  Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes

  Language:C++938155

• ihebski/DefaultCreds-cheat-sheet

  One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

  Language:Python5.8k708

• ZeroMemoryEx/Blackout

  kill anti-malware protected processes ( BYOVD) ( Microsoft Won)

  Language:C++916137

• Octoberfest7/Inline-Execute-PE

  Execute unmanaged Windows executables in CobaltStrike Beacons

  Language:C650102

• evilsocket/jscythe

  Abuse the node.js inspector mechanism in order to force any node.js/electron/v8 based process to execute arbitrary javascript code.

  Language:Rust32426

• chvancooten/maldev-for-dummies

  A workshop about Malware Development

  Language:Nim1.6k190

• iknowjason/PurpleCloud

  A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-purple-teaming-183b7df7a2f4

  Language:Python54895

• 0xZDH/BridgeKeeper

  Scrape, Hunt, and Transform names and usernames

  Language:Python11111

• christophetd/IPv6teal

  :wave: Stealthy data exfiltration via IPv6 covert channel

  Language:Python10419

• D00MFist/PersistentJXA

  Collection of macOS persistence methods and miscellaneous tools in JXA

  Language:JavaScript26527

• rust-lang/mdBook

  Create book from markdown files. Like Gitbook but implemented in Rust

  Language:Rust18.8k1.7k

• nop-tech/OSED

  Containing my notes, practice binaries + solutions, blog posts, etc. for the Offensive Security Exploit Developer (OSED/EXP-301)

  597127

• c3c/ADExplorerSnapshot.py

  ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.

  Language:Python918124

• Crypt0s/DelegationBOF

  Language:C++13823

• chvancooten/CloudLabsAD

  Terraform + Ansible deployment scripts for an Active Directory lab environment.

  Language:Shell27758

• anthemtotheego/CredBandit

  Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that back through your already existing Beacon communication channel

  Language:C21455

• connormcgarr/tgtdelegation

  tgtdelegation is a Beacon Object File (BOF) to obtain a usable TGT via the "TGT delegation trick"

  Language:Python16623