Pinned Repositories
365Inspect
A PowerShell script that automates the security assessment of Microsoft Office 365 environments.
Abusing_Weak_ACL_on_Certificate_Templates
Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
adalanche
Active Directory ACL Visualizer - who's really Domain Admin?
Generate-Macro
This Powershell script will generate a malicious Microsoft Office document with a specified payload and persistence method.
LazySign
Create fake certs for binaries using windows binaries and the power of bat files
minbeacon
A work in progress of constructing a minimal http(s) beacon for Cobalt Strike.
SharpSQLPwn
C# tool to identify and exploit weaknesses within MSSQL instances in Active Directory environments
th3k3ymak3r's Repositories
th3k3ymak3r/minbeacon
A work in progress of constructing a minimal http(s) beacon for Cobalt Strike.
th3k3ymak3r/365Inspect
A PowerShell script that automates the security assessment of Microsoft Office 365 environments.
th3k3ymak3r/BackupOperatorToDA
From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
th3k3ymak3r/BofAllTheThings
Creating a repository with all public Beacon Object Files (BoFs)
th3k3ymak3r/Cobalt-Strike
Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection
th3k3ymak3r/CobaltNotion
A spin-off research project. Cobalt Strike x Notion collab 2022
th3k3ymak3r/COM-Hunter
COM Hijacking VOODOO
th3k3ymak3r/CS-BOFs
Collection of CobaltStrike beacon object files
th3k3ymak3r/CS-Remote-OPs-BOF
th3k3ymak3r/dropper
Project that generates Malicious Office Macro Enabled Dropper for DLL SideLoading and Embed it in Lnk file to bypass MOTW
th3k3ymak3r/espoofer
An email spoofing testing tool that aims to bypass SPF/DKIM/DMARC and forge DKIM signatures.🍻
th3k3ymak3r/goldberg
A Rust-based obfuscation macro library!
th3k3ymak3r/GraphSpy
Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI
th3k3ymak3r/KrbRelay
Framework for Kerberos relaying
th3k3ymak3r/KrbRelayUp
KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
th3k3ymak3r/MsGraphFunzy
Script to dump emails through Microsoft Graph API
th3k3ymak3r/O365-Doppelganger
A quick handy script to harvest credentials off of a user during a Red Team and get execution of a file from the user
th3k3ymak3r/Periscope
th3k3ymak3r/PersistBOF
th3k3ymak3r/PowerRunAsSystem
Run application as system with interactive system process support (active Windows session)
th3k3ymak3r/PowerSharpPack
th3k3ymak3r/PPLKiller
Tool to bypass LSA Protection (aka Protected Process Light)
th3k3ymak3r/PrivFu
Kernel mode WinDbg extension and PoCs for token privilege investigation.
th3k3ymak3r/Security-101
7 Lessons, Kick-start Your Cybersecurity Learning.
th3k3ymak3r/SharpStay
.NET project for installing Persistence
th3k3ymak3r/SQLRecon
A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.
th3k3ymak3r/Stealerium
Stealer + Clipper + Keylogger
th3k3ymak3r/Table-Top-With-Teeth
TEST
th3k3ymak3r/Telepathy
Public release of Telepathy, an OSINT toolkit for investigating Telegram chats.
th3k3ymak3r/ToolDump-v1
Some of my custom "tools".