m40l0ng Goto Github PK

a-red-teamer-diaries

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

adalanche

Active Directory ACL Visualizer and Explorer - who's really Domain Admin?

alfa-shell

Backdoor PHP shell script.

amsi_veh

A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, function hooking or Import Address Table (IAT) modification.

androidmalware_2020

Popular Android malware seen in 2020

apkleaks

Scanning APK file for URIs, endpoints & secrets.

arsenal

Arsenal is just a quick inventory and launcher for hacking programs

arttoolkit.github.io

A RedTeam Toolkit

awesome-av-edr-xdr-bypass

Awesome AV/EDR/XDR Bypass Tips

awesome-yara

A curated list of awesome YARA rules, tools, and people.

bokuloader

A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!

cordova-plugin-camera-preview

Cordova plugin that allows camera interaction from HTML code

crackmapexec

A swiss army knife for pentesting networks

cve-2021-31728

vulnerability in zam64.sys, zam32.sys allowing ring 0 code execution. CVE-2021-31727 and CVE-2021-31728 public reference.

donut

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

dvs

D(COM) V(ulnerability) S(canner) AKA Devious swiss army knife - Lateral movement using DCOM Objects

evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

exploits

facad1ng

The Ultimate URL Masking Tool - An open-source URL masking tool designed to help you Hide Phishing URLs and make them look legit using social engineering techniques.

flipper-zero-unleashed-firmware

Flipper Zero Unleashed Firmware

gc2-sheet

GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet and exfiltrate data using Google Drive.

ghidra

Ghidra is a software reverse engineering (SRE) framework

googleprojectzero_winafl

A fork of AFL for fuzzing Windows binaries

hellsgate

Original C Implementation of the Hell's Gate VX Technique

inflativeloading

Dynamically convert a native EXE to PIC shellcode by appending a shellcode stub

instagrapi

🔥 The fastest and powerful Python library for Instagram Private API 2023

jasmin-ransomware

Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.

java-goof

javadeserh2hc

Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).

learning-edr-and-edr_evasion

I will be uploading all the codes which I created with the help either opensource projects or blogs. This is a step by step EDR learning path for me.