Brian Baraka Kasamba's Projects
父进程欺骗,另类administrator提权到system
FOEKED FOR USE
My portfolio based on hugo static site with Toha theme.
CHROME BROWSER EXPLOITATION
Demonstrating how to dump chrome passwords in C++
免杀捆绑器,过主流杀软。A Bundler bypass anti-virus
Bypass Windows UAC Tool
One tactic that has become increasingly popular to achieve stealth is ‘living off the land’. This involves using tools natively found on the victim’s device to achieve some or all of the attacker’s purposes while at the same time reducing the attacker’s exposure and risk of detection.
A complete guide on tactics to recon Os information for red team Purposes
The Voting System web application using Django is a project that serves as the automated voting system of an organization or school. This system works like the common manual system of election voting system whereas this system must be populated by the list of the positions, candidates, and voters. This system can help a certain organization or scho
bypassuac、administrator->system提权的免杀小工具,可过Defender、360、卡巴等
Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.
Create a fully undetectable backdoor with simple steps.
Golang Bypass Av Generator template
Notes worth taking home from ICS course
It embeds the executable file or payload inside the jpg file. The method the program uses isn't exactly called one of the steganography methods. For this reason, it does not cause any distortion in the JPG file. The JPG file size and payload do not have to be proportional.The JPG file is displayed normally in any viewing application or web applic
Beacon Object File implementation of pwn1sher's KillDefender
Linux writeups i found effective for injection,infection,evasion,persistence,system components and abuses.
DMZ the entire local network
Fileless Command Execution for Lateral Movement in Nim
Guaranteed compile-time string literal obfuscation header-only library for C++14
Write up for Black-hat python from PactpPub networking_and_servers books.
A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX
Config files for my GitHub profile.
Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic look legit.
Tools and Techniques for Red Team / Penetration Testing