zimnyaa's Stars
burrowers/garble
Obfuscate Go builds
Notselwyn/CVE-2024-1086
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.
sebaxakerhtc/rdpwrap
RDP Wrapper Library
devploit/nomore403
Tool to bypass 403/40X response codes.
DosX-dev/obfus.h
Macro-header for compile-time C obfuscation (tcc, win x86/x64)
xaitax/SploitScan
SploitScan is a sophisticated cybersecurity utility designed to provide detailed information on vulnerabilities and associated exploits.
p0dalirius/LDAPmonitor
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!
subat0mik/Misconfiguration-Manager
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.
justakazh/sicat
The useful exploit finder
FalconForceTeam/SOAPHound
SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.
CICADA8-Research/RemoteKrbRelay
Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
TupleType/awesome-cicd-attacks
Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.
hoodoer/JS-Tap
JavaScript payload and supporting software to be used as XSS payload or post exploitation implant to monitor users as they use the targeted application. Also includes a C2 for executing custom JavaScript payloads in clients, and a "mimic" feature that automatically generates custom payloads.
EgeBalci/deoptimizer
Evasion by machine code de-optimization.
klezVirus/DriverJack
Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths
Mayyhem/Maestro
Abusing Intune for Lateral Movement over C2
EvanMcBroom/lsa-whisperer
Tools for interacting with authentication packages using their individual message protocols
mandiant/ccmpwn
synacktiv/SCCMSecrets
SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
garrettfoster13/aced
ZERODETECTION/MSC_Dropper
sevagas/Advanced_Initial_access_in_2024_OffensiveX
Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
klezVirus/RpcProxyInvoke
Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar
Flangvik/QRucible
Python utility that generates "imageless" QR codes in various formats
klezVirus/koppeling-p
Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
netero1010/SCCMVNC
A tool to modify SCCM remote control settings on the client machine, enabling remote control without permission prompts or notifications. This can be done without requiring access to SCCM server.
Tylous/Mangle
Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
JumpsecLabs/WALK_WebAssembly_Lure_Krafter
A web assembly (WASM) phishing lure generator based on pre-built templates and written in Rust with some GenAI assistance. W.A.L.K. aims at aiding with initial access during red teams and phishing exercises leveraging WASM smuggling techniques.
fern89/C2
A basic C2 framework written in C
scriptchildie/GoDll2Shellcode
Turn any dll into shellcode. Reflective loader was written in x64 assembly