sinw0lf Goto Github PK

teams_dump

PoC for dumping and decrypting cookies in the latest version of Microsoft Teams

teamsntlmleak

Leak NTLM via Website tab in teams via MS Office

teamsphisher

Send phishing messages and attachments to Microsoft Teams users

terminator

Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes

tgsthief

My implementation of the GIUDA project in C++

threadlessstompingkann

Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.

threatpursuit-vm

Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.

tiny-php-webshell

several list of simple and obfuscate PHP shell

tokenelevation

Token Elevation to authorized user as SYSTEM or Domain Admins

truesightkiller

CPP AV/EDR Killer

ttpforge

The TTPForge is a Cybersecurity Framework for developing, automating, and executing attacker Tactics, Techniques, and Procedures (TTPs).

tymspecial

SysWhispers integrated shellcode loader w/ ETW patching, anti-sandboxing, & spoofed code signing certificates

uac-bypass-fud

The UAC Bypass program is designed to run files with elevated privileges on Windows without requesting user permission or displaying the UAC screen. It provides a way to bypass User Account Control (UAC) restrictions for specific tasks.

uncover

Quickly discover exposed hosts on the internet using multiple search engine.

unhookingpatch

Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime

unicorn

Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.

veil

Veil 3.1.X (Check version info in Veil at runtime)

venom

venom - shellcode generator/compiler/handler (metasploit)

villain

Villain is a Windows & Linux backdoor generator and multi-session handler that allows users to connect with sibling servers (other machines running Villain) and share their backdoor sessions, handy for working as a team.

viper

Intranet pentesting tool with webui 开源图形化内网渗透工具

virustotalc2

Abusing VirusTotal API to host our C2 traffic, usefull for bypassing blocking firewall rules if VirusTotal is in the target white list , and in case you don't have C2 infrastructure , now you have a free one

vortex

VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit

warmer

Selenium-based Python script to automate sending emails to warm up your sender reputation and improve email deliverability

weaponizekali.sh

Automate installation of extra pentest tools on Kali Linux

weird_proxies

Reverse proxies cheatsheet

wesng

Windows Exploit Suggester - Next Generation

whisker

Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.

windefenderkiller

Windows Defender Killer | C++ Code Disabling Permanently Windows Defender using Registry Keys

windowsmdmlpe

wolfpack

WolfPack combines the capabilities of Terraform and Packer to streamline the deployment of red team redirectors on a large scale.