Pinned Repositories
burp-extension-training
Burp Extension Training
o365-attack-toolkit
A toolkit to attack Office365
WKPExercises
Exercises from Windows Kernel Programming(2019) by Pavel Yosifovich
sunnyneo's Repositories
sunnyneo/AADOutsider-py
Python3 rewrite of AsOutsider features of AADInternals
sunnyneo/certsync
Dump NTDS with golden certificates and UnPAC the hash
sunnyneo/ChromeKatz
Dump cookies directly from Chrome process memory
sunnyneo/CLRInjector
A PoC .NET-specific process injection tool
sunnyneo/CsWhispers
Source generator to add D/Invoke and indirect syscall methods to a C# project.
sunnyneo/decrypt-chrome-passwords
sunnyneo/deoptimizer
Evasion by machine code de-optimization.
sunnyneo/DirtyCLR
An App Domain Manager Injection DLL PoC on steroids
sunnyneo/email2phonenumber
A OSINT tool to obtain a target's phone number just by having his email address
sunnyneo/FormThief
Spoofing desktop login applications with WinForms and WPF
sunnyneo/GodPotato
sunnyneo/HSC24RedTeamInfra
Slides and Codes used for the workshop Red Team Infrastructure Automation
sunnyneo/IHxExec
Process injection alternative
sunnyneo/ImmoralFiber
sunnyneo/LayeredSyscall
Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR hooks in Windows.
sunnyneo/LdrLockLiberator
For when DLLMain is the only way
sunnyneo/LogHunter
Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)
sunnyneo/lsa-whisperer
Tools for interacting with authentication packages using their individual message protocols
sunnyneo/Marble
The CIA's Marble Framework is designed to allow for flexible and easy-to-use obfuscation when developing tools.
sunnyneo/MyMSIAnalyzer
Analyse MSI files for vulnerabilities
sunnyneo/NativeDump
Dump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!)
sunnyneo/NtlmThief
Extracting NetNTLM without touching lsass.exe
sunnyneo/PoolPartyBof
A beacon object file implementation of PoolParty Process Injection Technique.
sunnyneo/POSTDump
sunnyneo/ReadRemoteProcessCommandline_BOF
sunnyneo/RemoteKrbRelay
Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
sunnyneo/SuperSharpShares
SuperSharpShares is a tool designed to automate enumerating domain shares, allowing for quick verification of accessible shares by your associated domain account.
sunnyneo/Tartarus-TpAllocInject
sunnyneo/VectoredExceptionHandling
sunnyneo/winsos-poc
A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries.