Pinned Repositories
SharpSCCM
A C# utility for interacting with SCCM
docker-bloodhound
BloodHound Docker Ready to Use
ElevateKit
The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
Journey_to_OSCE
A curated collection of resources that may be beneficial for anyone pursuing the OSCE.
Misconfiguration-Manager
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.
msf_rc_scripts
OSCE-Prep
A list of freely available resources that can be used as a prerequisite before taking OSCE.
scripts
SharpSCCM
A C# utility for interacting with SCCM
whoamsi
An effort to track security vendors' use of Microsoft's Antimalware Scan Interface
subat0mik's Repositories
subat0mik/Misconfiguration-Manager
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.
subat0mik/whoamsi
An effort to track security vendors' use of Microsoft's Antimalware Scan Interface
subat0mik/Journey_to_OSCE
A curated collection of resources that may be beneficial for anyone pursuing the OSCE.
subat0mik/bypasses
subat0mik/dnSpy
.NET debugger and assembly editor
subat0mik/docker-bloodhound
BloodHound Docker Ready to Use
subat0mik/LdapRelayScan
Check for LDAP protections regarding the relay of NTLM authentication
subat0mik/osed-scripts
bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)
subat0mik/printspoofer.net
subat0mik/rdpthief_dllinjection
subat0mik/scripts
subat0mik/SharpSCCM
A C# utility for interacting with SCCM
subat0mik/shellcode-runners
Various shellcode runners
subat0mik/win32
Public mirror for win32-pr
subat0mik/win_api
Learning the arcane arts of the Windows API.
subat0mik/WinDbg-Samples
Sample extensions, scripts, and API uses for WinDbg.
subat0mik/windows-itpro-docs
This is used for contributions to the Windows 10 content for IT professionals on docs.microsoft.com.
subat0mik/Advanced-Process-Injection-Workshop
subat0mik/Apollo
A .NET Framework 4.0 Windows Agent
subat0mik/.github
subat0mik/chronology
SpecterOps Historical Records
subat0mik/minidump
Simple C# program to call MiniDumpWriteDump to dump LSASS memory.
subat0mik/MSSQL_Scripts
Various scripts/tools for enumerating and abusing MSSQL.
subat0mik/personal_site
subat0mik/PetitPotam
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
subat0mik/PEzor
Open-Source PE Packer
subat0mik/SCShell
SCShell implementation from scratch done as part of the PEN-300 course.
subat0mik/Seatbelt
Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
subat0mik/SharpDPAPI
SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.
subat0mik/Whisker
Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.