Name: Paranoid Ninja
Type: User
Company: Dark Vortex
Bio: Brute Ratel Author | Dark Vortex Founder | Ex-Detection Engineering @CrowdStrike | Ex-Red Team/IR @Mandiant | Ex-Researcher/Threat Hunter @niiconsulting
Twitter: NinjaParanoid
Location: Last seen in Ring 0. Current Location Unknown
0xdarkvortex-malwaredevelopment
This repo will contain code snippets for blogs: Malware on Steroids written by me at https://scriptdotsh.com/index.php/category/malware-development/
0xdarkvortex-red-team-ttps-part-2
Code for blog written at 0xdarkvortex.dev Red Team TTPs Part 2
0xdarkvortex-reverse-engineering
This repo contains all the code that will be referred at https://scriptdotsh.com by Paranoid Ninja
alpha-stage-scripts
Repo contains a list of random scripts that I use while testing out random things.
attiny85-rubberducky-sketches
This repo contains C-programmed sketches for the custom rubber ducky built using ATtiny85 microchip. Blogs on setting up the environment can be found here:
boomerang
Boomerang is a tool to expose multiple internal servers to web/cloud. Agent & Server are pretty stable and can be used in Red Team for Multiple levels of Pivoting and exposing multiple internal services to external/other networks
botnet-blogpost
This repo basically contains the code that was mentioned in the blogposts that was written by me at:
brc4-seminar-stage-i
These are the slide decks and source code for Brute Ratel Seminar conducted on 24th August 2023. The youtube video for the seminar can be found here:
brute-ratel-c4-community-kit
This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)
brute-ratel-external-c2-specification
This repository provides the core to build your own External C2 Server and Connector for Brute Ratel C4
carboncopy
A tool which creates a spoofed certificate of any online website and signs an Executable for AV Evasion. Works for both Windows and Linux
chroot-jail
This Shell script can create a chrooted environment along with a SSH Jail for the same. This can be used either for a single user jail or to create a chroot jailed group.
cobaltstrike-detection
This repo will contain the core detection, only for Cobaltstrike's leaked versions. Non-leaked version detections wont be shared
dotnettracer
C code to enable ETW tracing for Dotnet Assemblies
foliage
Experiment on reproducing Obfuscate & Sleep
o365-doppelganger
A quick handy script to harvest credentials off of a user during a Red Team and get execution of a file from the user
pandoras-box
This repo contains my custom scripts for Penetration Testing and Red Team Assessments. I will keep on updating this repo as and when I get time.
piborg
This is a Shell Script to setup NTLM hash sniffing using the Raspberry Pi Zero. This tool can be used during Red Team assessments by attaching it to a Switch and creating a WPAD Proxy Server.
pic-get-privileges
Building and Executing Position Independent Shellcode from Object Files in Memory
process-instrumentation-syscall-hook
A simple program to hook the current process to identify the manual syscall executions on windows
proxy-dll-loads
The code is a pingback to the Dark Vortex blog:
proxy-function-calls-for-etwti
The code is a pingback to the Dark Vortex blog: https://0xdarkvortex.dev/hiding-memory-allocations-from-mdatp-etwti-stack-tracing/
sheltrex
A Botnet builder built on Elasticsearch and Kibana with the help of C++ and Python3
shuriken
Offensive Android Kernel on Steroids - Shuriken is an Android kernel for Oneplus 5/5T which supports multiple features for pentesting.
threat-hunting
This repo is dedicated to all my tricks, tweaks and modules for testing and hunting threats. This repo contains multiple directories which are in their own, different modules required for threat hunting. This repo will be updated as and when new changes are made.
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
Django
The Web framework for perfectionists with deadlines.
Laravel
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft
Open source projects and samples from Microsoft.
Google
Google ❤️ Open Source for everyone.
Alibaba
Alibaba Open Source for everyone
D3
Data-Driven Documents codes.
Tencent
China tencent open source team.
