Pinned Repositories
.Exe-to-.Doc-Exploit
$2100 .Exe to .Doc Exploit (Python)
0xsp-Mongoose
Privilege Escalation Enumeration Toolkit (64/32 ) , fast , intelligent enumeration with Web API integration . Mastering Your Own Finding
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
Adama
Searches For Threat Hunting and Security Analytics
nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
vuln-chm-hijack
Potential malicious code execution via CHM hijacking (CVE-2019-9896)
yehias's Repositories
yehias/advmlthreatmatrix
Adversarial Threat Matrix
yehias/avml
AVML - Acquire Volatile Memory for Linux
yehias/BOF_Collection
Various Cobalt Strike BOFs
yehias/Citadel
My small collection of pentesting scripts
yehias/cobalt_strike_extension_kit
Attempting to be an all in one repo for others' userful aggressor scripts as well as things we've found useful during Red Team Operations.
yehias/DetectionLab
Vagrant & Packer scripts to build a lab environment complete with security tooling and logging best practices
yehias/DeTTECT
Detect Tactics, Techniques & Combat Threats
yehias/donut
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
yehias/ElasticEngineerNotes
yehias/email-header-analyzer
E-Mail Header Analyzer
yehias/flare-vm
yehias/gophercap
Accurate, modular, scalable PCAP manipulation tool written in Go.
yehias/HellsGate
Original C Implementation of the Hell's Gate VX Technique
yehias/herpaderping
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
yehias/invoke-atomicredteam
Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-red-team/tree/master/atomics) of Red Canary's Atomic Red Team project.
yehias/IRCoreForensicFramework
Powershell / C# based cross platform forensic framework based for live incident response
yehias/irma
IRMA is an asynchronous & customizable analysis system for suspicious files.
yehias/KapeTest
yehias/Malcolm
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files) and Zeek logs.
yehias/NetblockTool
Find netblocks owned by a company
yehias/ProxyBroker
Proxy [Finder | Checker | Server]. HTTP(S) & SOCKS :performing_arts:
yehias/PSBits
Simple (relatively) things allowing you to dig a bit deeper than usual.
yehias/python-netflow-v9-softflowd
PyPI "netflow" package. NetFlow v9 parser, collector and analyzer implemented in Python 3. Developed and tested with softflowd
yehias/Security-Tool-Chest
A list of useful security and obvescation tools useful for red and blue teaming activities. A list made possible by the provided references.
yehias/shad0w
A post exploitation framework designed to operate covertly on heavily monitored enviroments
yehias/sof-elk-TLN-config-files
yehias/Telegram-RAT
Windows Remote Administration Tool via Telegram. Written in Python
yehias/TelemetrySourcerer
Enumerate and disable common sources of telemetry used by AV/EDR.
yehias/WinPmem
The multi-platform memory acquisition tool.
yehias/WinPwnage
UAC bypass, Elevate, Persistence methods