pard0p

pard0p's Stars

• icyguider/Shhhloader

  Syscall Shellcode Loader (Work in Progress)

  Language:Python1.1k183

• OtterHacker/Hooker

  Language:C9611

• Maldev-Academy/ExecutePeFromPngViaLNK

  Extract and execute a PE embedded within a PNG file using an LNK file.

  Language:Python22332

• tsarpaul/llvm-string-obfuscator

  LLVM String Obfuscator

  Language:C++24638

• Maldev-Academy/EmbedPayloadInPng

  Embed a payload inside a PNG file

  Language:C20124

• rofl0r/microsocks

  tiny, portable SOCKS5 server with very moderate resource usage

  Language:C1.6k275

• bluesadi/Pluto

  Obfuscator based on LLVM 14.0.6

  Language:LLVM826182

• DosX-dev/obfus.h

  Macro-header for compile-time C obfuscation (tcc, win x86/x64)

  Language:C89571

• mlcsec/EDRenum-BOF

  Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.

  Language:C1077

• rvrsh3ll/BOF_Collection

  Various Cobalt Strike BOFs

  Language:C57856

• passtheticket/CVE-2024-38200

  CVE-2024-38200 - Microsoft Office NTLMv2 Disclosure Vulnerability

  Language:HTML12526

• crvvdev/MasterHide

  A x64 Windows Rootkit using SSDT or Hypervisor hook

  Language:C++512112

• JohnHammond/recaptcha-phish

  Phishing with a fake reCAPTCHA

  Language:HTML42073

• can1357/hvdetecc

  Collection of hypervisor detections

  Language:C++18512

• Offensive-Panda/ProcessInjectionTechniques

  This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at the forefront of the field. It serves as a central repository of knowledge, offering in-depth exploration of various process injection techniques used by adversaries.

  Language:C++24632

• rasta-mouse/OST-C2-Spec

  Open Source C&C Specification

  22114

• 0x6rss/pdfdropper

  PDF dropper Red Team Scenairos

  Language:Python14943

• Mazars-Tech/AD_Miner

  AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses

  Language:JavaScript1.2k114

• wavestone-cdt/EDRSandblast

  Language:C1.5k279

• fortra/No-Consolation

  A BOF that runs unmanaged PEs inline

  Language:C54464

• mrd0x/PWA-Phishing

  Language:HTML26848

• ricardojoserf/NativeDump

  Dump lsass using only Native APIs by hand-crafting Minidump files (without MiniDumpWriteDump!!!)

  Language:C#46464

• JanielDary/ImmoralFiber

  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) PhantomThread (An evolved callstack-masking implementation)

  Language:C++20530

• 0xda568/IconJector

  Unorthodox and stealthy way to inject a DLL into the explorer using icons

  Language:C++29639

• RedSiege/GraphStrike

  Cobalt Strike HTTPS beaconing over Microsoft Graph API

  Language:C55085

• Warrior9912/Hack-the-Box-Walkthroughs

  I'm gonna be posting HTB walkthroughs here, take this as my little personal portfolio

  2

• czs108/Windows-PE-Packer

  🗜️ A packer for Windows x86 executable files written in C and Intel x86 Assembly. The new file after packing can obstruct reverse engineering.

  Language:C32650

• SafeBreach-Labs/PoolParty

  A set of fully-undetectable process injection techniques abusing Windows Thread Pools

  Language:C++952132

• rafagafe/tiny-json

  The tiny-json is a versatile and easy to use json parser in C suitable for embedded systems. It is fast, robust and portable.

  Language:C35790

• nullsection/DLL-Spoofer

  POC for a DLL spoofer to determine DLL Hijacking

  Language:Python607