Pinned Repositories
AutoSmuggle
Utility to craft HTML or SVG smuggled files for Red Team engagements
DCMB
Dont Call Me Back - Dynamic kernel callback resolver.
InsightEngineering
Debugging
KBlast
Windows Kernel Offensive Toolset
Malware-GAN
Realization of paper: "Generating Adversarial Malware Examples for Black-Box Attacks Based on GAN" 2017
open-llms
📋 A list of open LLMs available for commercial use.
pplib
Elevate a process to be a protected process
ProxyForge
Solving IP Throttling with Rotating Proxies
tomkallo's Repositories
tomkallo/AutoSmuggle
Utility to craft HTML or SVG smuggled files for Red Team engagements
tomkallo/InsightEngineering
Debugging
tomkallo/KBlast
Windows Kernel Offensive Toolset
tomkallo/open-llms
📋 A list of open LLMs available for commercial use.
tomkallo/ProxyForge
Solving IP Throttling with Rotating Proxies
tomkallo/ai-threat-modeling-action
AI featured threat modeling and security review action
tomkallo/al-khaser
Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
tomkallo/Certipy
Tool for Active Directory Certificate Services enumeration and abuse
tomkallo/chainlit
Build Python LLM apps in minutes ⚡️
tomkallo/Cyberwatch
Building a consolidated RSS feed for articles about cyberattacks
tomkallo/dash-bootstrap-templates
A collection of 52 Plotly figure templates with a Bootstrap theme. Two theme switch components. Stylesheet to apply Bootstrap themes to Plotly Dash components.
tomkallo/evilginx2-TTPs
Reverse engineered to remove IOCs, added Exchange Online Protection IP blacklist and bing-bot user-agent blocking, DNS configuration and notes on usage.
tomkallo/free-programming-books
:books: Freely available programming books
tomkallo/HardeningKitty
HardeningKitty - Checks and hardens your Windows configuration
tomkallo/lldext
My commands and scripts extending WinDbg
tomkallo/mhydeath
Abusing mhyprotect to kill AVs / EDRs / XDRs / Protected Processes.
tomkallo/Microsoft-Malware-Classification
🔍 "2015 Microsoft Malware Classification Challenge" - Using machine learning to classify malware into different families based on Windows PE structures, disassembly scripts and machine code.
tomkallo/modelscan
Protection against Model Serialization Attacks
tomkallo/OffensiveCloud
Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)
tomkallo/openedr
Open EDR public repository
tomkallo/PKI-Escalate
Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Services and Enrollment Services ADCS containers to obtain Enterprise Administrator from Domain Administrator. Works by enabling a user to perform ESC1 (Enrolee supplying the SAN).
tomkallo/process-governor
This application allows you to put various limits on Windows processes.
tomkallo/professional-programming
A collection of learning resources for curious software engineers
tomkallo/pyobsplot
Observable Plot in Jupyter notebooks and Quarto documents
tomkallo/redteam-research
Collection of PoC and offensive techniques used by the BlackArrow Red Team
tomkallo/SharpTerminator
Terminate AV/EDR Processes using kernel driver
tomkallo/simple-guide-to-mlx-finetuning
Generate train.jsonl and valid.jsonl files to use for fine-tuning Mistral and other LLMs.
tomkallo/SweetDreams
Implementation of Advanced Module Stomping and Heap/Stack Encryption
tomkallo/Windows-Kernel-Explorer
A free but powerful Windows kernel research tool.
tomkallo/withdll
A small tool to perform DLL injections