xuoor's Stars
redcanaryco/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
SnaffCon/Snaffler
a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )
P0cL4bs/wifipumpkin3
Powerful framework for rogue access point attack.
phra/PEzor
Open-Source Shellcode & PE Packer
chvancooten/maldev-for-dummies
A workshop about Malware Development
wavestone-cdt/EDRSandblast
paranoidninja/CarbonCopy
A tool which creates a spoofed certificate of any online website and signs an Executable for AV Evasion. Works for both Windows and Linux
chvancooten/OSEP-Code-Snippets
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
Cracked5pider/Stardust
A modern 64-bit position independent implant template
lkarlslund/ldapnomnom
Quietly and anonymously bruteforce Active Directory usernames at insane speeds from Domain Controllers by (ab)using LDAP Ping requests (cLDAP)
0xHossam/Killer
Killer tool is designed to bypass AV/EDR security tools using various evasive techniques.
grimlockx/ADCSKiller
An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer
AggressiveUser/AllForOne
AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,
looCiprian/GC2-sheet
GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsoft SharePoint List and exfiltrate files using Google Drive or Microsoft SharePoint Document.
Wra7h/FlavorTown
Various ways to execute shellcode
SaadAhla/Shellcode-Hide
This repo contains : simple shellcode Loader , Encoders (base64 - custom - UUID - IPv4 - MAC), Encryptors (AES), Fileless Loader (Winhttp, socket)
GetRektBoy724/SharpUnhooker
C# Based Universal API Unhooker
arttoolkit/arttoolkit.github.io
A RedTeam Toolkit
pwndoc-ng/pwndoc-ng
Pentest Report Generator
7BitsTeam/EDR-Bypass-demo
Some demos to bypass EDRs or AVs by 78itsT3@m
SaadAhla/D1rkLdr
Shellcode Loader with Indirect Dynamic syscall Implementation , shellcode in MAC format, API resolving from PEB, Syscall calll and syscall instruction address resolving at run time
0xStarlight/CRTP-Notes
Study materials for the Certified Red Team Pentesting (CRTP) exam, covering essential concepts in red teaming and penetration testing
ZephrFish/Bloodhound-CustomQueries
Custom Queries - Brought Up to BH4.1 syntax
Konis-Bros/espio
Shellcode obfuscation tool to avoid AV/EDR.
matro7sh/matro7sh_loaders
this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
yanncam/ShuckNT
ShuckNT is the script of Shuck.sh online service for on-premise use. It is design to dowgrade, convert, dissect and shuck authentication token based on Data Encryption Standard (DES).
ICSSecurityLabs/ICSSecurityLabs
ICS Security Labs
panhavad/undetectable-reverse-shell-win10
Education purpose showing how the combination of useful tool could tweak a patched script can still be execute without detected. In this scenario I am using various step and tool including the a big contribution from KeyEmu to make this happened.
syedumerqadri/PCI_parse
Parse gnmap file for the creation of Network Segmentation Testing Report Tables
OsaAjani/banque
Very bad code and a lot of security breach for tps