Pinned Repositories
ad-honeypot-autodeploy
Deploy a small, intentionally insecure, vulnerable Windows Domain for RDP Honeypot fully automatically.
dll-hijack-by-proxying
Exploiting DLL Hijacking by DLL Proxying Super Easily
hs-dvr-telnet
open telnet port on modern HiSilicon devices
log4shell-vulnerable-app
A Basic Java Application Vulnerable to the Log4Shell RCE
pwn-hisilicon-dvr
rbcd-attack
Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket
serviceDetector
Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin privileges.
usbgadget-tool
Dumb USB HID gadget creator for Android (for triggering device driver install on Windows for LPE)
tothi's Repositories
tothi/dll-hijack-by-proxying
Exploiting DLL Hijacking by DLL Proxying Super Easily
tothi/pwn-hisilicon-dvr
tothi/ad-honeypot-autodeploy
Deploy a small, intentionally insecure, vulnerable Windows Domain for RDP Honeypot fully automatically.
tothi/serviceDetector
Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin privileges.
tothi/stager_libpeconv
A basic meterpreter protocol stager using the libpeconv library by hasherezade for reflective loading
tothi/log4shell-vulnerable-app
A Basic Java Application Vulnerable to the Log4Shell RCE
tothi/azure-function-proxy
basic proxy as an azure function serverless app
tothi/impacket
Impacket is a collection of Python classes for working with network protocols.
tothi/malicious-service
Minimal Windows Service Template for demonstrating privilege escalation via weak service executable permissions
tothi/steganography
Simple C++ Image Steganography tool to encrypt and hide files insde images using Least-Significant-Bit encoding.
tothi/azure-function-proxy-ng
Azure Function as a Reverse Proxy (e.g. for C2 ;) )
tothi/DeviceGuardBypasses
A repository of some of my Windows 10 Device Guard Bypasses
tothi/NetLoader
Loads any C# binary in mem, patching AMSI + ETW.
tothi/wifipem
automated tool for extracting RADIUS public certificates from pcap files and live captures
tothi/EDR-Preloader
An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer
tothi/home-assistant-core
:house_with_garden: Open source home automation that puts local control and privacy first.
tothi/MsgKit
A .NET library to make MSG files without the need for Outlook
tothi/SharpSecDump
.Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py
tothi/androidtv-remote
tothi/bintools
tothi/BloodHound
Six Degrees of Domain Admin
tothi/chunk-nordic
Yet another TCP-over-HTTP(S) tunnel
tothi/CrackMapExec
A swiss army knife for pentesting networks
tothi/ical2csv
A Python script that reads ics files and outputs their data into a csv file.
tothi/NimPlant
A light-weight first-stage C2 implant written in Nim.
tothi/ROADtools
A collection of Azure AD tools for offensive and defensive security purposes
tothi/samloader
Download Samsung firmware from official servers
tothi/SCShell
Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
tothi/SharpSvc
SharpSvc is a simple code set to interact with the SC Manager API and is compatible with Cobalt Strike.
tothi/thc-hydra
hydra