Pinned Repositories
sandbox-attacksurface-analysis-tools
Set of tools to analyze Windows sandboxes for exposed attack surface.
blackhat-usa-2022-demos
Demos for the Blackhat USA 2022 talk "Taking Kerberos to the Next Level"
canape
CANAPE Network Testing Tool
CANAPE.Core
A network proxy library written in C# for .NET Core based on CANAPE
DotNetToJScript
A tool to create a JScript file which loads a .NET v2 assembly from memory.
ExploitRemotingService
A tool to exploit .NET Remoting Services
infosec-presentations
A repository of previous info-sec presentations I've presented.
oleviewdotnet
A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container
windows-logical-eop-workshop
WindowsRpcClients
This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System from 7 to Windows 10.
tyranid's Repositories
tyranid/DotNetToJScript
A tool to create a JScript file which loads a .NET v2 assembly from memory.
tyranid/oleviewdotnet
A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container
tyranid/ExploitRemotingService
A tool to exploit .NET Remoting Services
tyranid/WindowsRpcClients
This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System from 7 to Windows 10.
tyranid/blackhat-usa-2022-demos
Demos for the Blackhat USA 2022 talk "Taking Kerberos to the Next Level"
tyranid/windows-logical-eop-workshop
tyranid/CANAPE.Core
A network proxy library written in C# for .NET Core based on CANAPE
tyranid/infosec-presentations
A repository of previous info-sec presentations I've presented.
tyranid/windows-security-internals
A repository for additional files related to the book Windows Security Internals with PowerShell from No Starch Press.
tyranid/IE11SandboxEscapes
Some example source code for fixed IE11 sandbox escapes.
tyranid/DeviceGuardBypasses
A repository of some of my Windows 10 Device Guard Bypasses
tyranid/ExploitDotNetDCOM
A tool to exploit .NET DCOM for EoP and RCE. Is fixed in latest versions of the .NET.
tyranid/WindowsRuntimeSecurityDemos
Demos for Presentation on Windows Runtime Security
tyranid/DotNetInteropDemos
A set of demos and a PowerShell module to interact with DotNetInterop.
tyranid/windows-attacksurface-workshop
Workshop material for a Windows Attack Surface Analysis Workshop
tyranid/ZeroNights2017
Some sample code from my Zero Nights 2017 presentation.
tyranid/ExampleChatApplication
A simple example chat application written for .NET Core to learn network protocol analysis.
tyranid/Zer0Con_2018
Repository for my talk on Desktop Bridge at Zer0Con 2018.
tyranid/canape
CANAPE Network Testing Tool
tyranid/DumpReparsePoints
This is a simple tool to dump all the reparse points on an NTFS volume.
tyranid/setsidmapping
Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.
tyranid/44con_2014
Materials for 44con 2014 CANAPE Workshop
tyranid/SuperFunkyChat
An example binary protocol application for learning CANAPE
tyranid/AxHell
A simple exploitable ActiveX control for RE/VR
tyranid/bh2014
Built binaries for BH 2014 workshop
tyranid/windows-memory-access-traps
A few examples of how to trap virtual memory access on Windows.
tyranid/pdbex
pdbex is a utility for reconstructing structures and unions from the PDB into compilable C headers
tyranid/poc-gtfo-13-poc
This is the code to accompany the article "How Slow Can You Go?" from PoC||GTFO #13
tyranid/apple1_emu
A simple Apple I emulator written in Rust.
tyranid/windbg_js_scripts
Toy scripts for playing with WinDbg JS API