Pinned Repositories
AutoSmuggle
Utility to craft HTML or SVG smuggled files for Red Team engagements
DCMB
Dont Call Me Back - Dynamic kernel callback resolver.
InsightEngineering
Debugging
KBlast
Windows Kernel Offensive Toolset
Malware-GAN
Realization of paper: "Generating Adversarial Malware Examples for Black-Box Attacks Based on GAN" 2017
open-llms
📋 A list of open LLMs available for commercial use.
pplib
Elevate a process to be a protected process
ProxyForge
Solving IP Throttling with Rotating Proxies
tomkallo's Repositories
tomkallo/DCMB
Dont Call Me Back - Dynamic kernel callback resolver.
tomkallo/Anti-Forensics
A Repository to Track Anti-Forensic Techniques
tomkallo/APCLdr
Payload Loader With Evasion Features
tomkallo/APT_CyberCriminal_Campagin_Collections
APT & CyberCriminal Campaign Collection
tomkallo/asm2cfg
Python command-line tool and GDB extension to view and save x86, ARM and objdump assembly files as control-flow graph (CFG) pdf files
tomkallo/asmcfg
An assembly control flow graph/basic block visualizer for the web
tomkallo/AzureAD-Attack-Defense
This publication is a collection of various common attack scenarios on Azure Active Directory and how they can be mitigated or detected.
tomkallo/BackupOperatorToolkit
The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
tomkallo/buzz
Buzz transcribes and translates audio offline on your personal computer. Powered by OpenAI's Whisper.
tomkallo/BypassAV
This map lists the essential techniques to bypass anti-virus and EDR
tomkallo/caOptics
CA Optics - Azure AD Conditional Access Gap Analyzer
tomkallo/certsync
Dump NTDS with golden certificates and UnPAC the hash
tomkallo/css
Convert shellcode into :sparkles: different :sparkles: formats!
tomkallo/D1rkLrd
Shellcode Loader with Indirect Dynamic syscall Implementation , shellcode in MAC format, API resolving from PEB, Syscall calll and syscall instruction address resolving at run time
tomkallo/EarlyBirdNTDLL
tomkallo/fuzzing
Tutorials, examples, discussions, research proposals, and other resources related to fuzzing
tomkallo/Havoc
The Havoc Framework.
tomkallo/inql
InQL - A Burp Extension for GraphQL Security Testing
tomkallo/mathtocode
tomkallo/ntdlll-unhooking-collection
different ntdll unhooking techniques : unhooking ntdll from disk, from KnownDlls, from suspended process, from remote server (fileless)
tomkallo/openingtree
Consolidated view of all your chess games from chess.com, lichess, grandmaster games or custom pgn.
tomkallo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
tomkallo/PyCript
Burp Suite extension that allows for bypassing client-side encryption using custom logic for manual and automation testing with Python and NodeJS. It enables efficient testing of encryption methods and identification of vulnerabilities in the encryption process.
tomkallo/report
Pentest Report Generator
tomkallo/scoold
A Stack Overflow clone for teams (self-hosted or hosted)
tomkallo/SharpStartWebclient
Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
tomkallo/Silhouette
Keep it secret, keep it safe
tomkallo/Tajimari
the Open Source and Pure C++ Packer for eXecutables
tomkallo/TimeException
A tool to find folders excluded from AV real-time scanning using a time oracle
tomkallo/whisper
Robust Speech Recognition via Large-Scale Weak Supervision