Stars
physics-sec / SysWhispers
Forked from jthuraisamy/SysWhispersAV/EDR evasion via direct system calls.
Non organized Cpp code files I used for my research on Windows
Python package for wrapping applications inside a tailored interactive shell
NetRipper - Smart traffic sniffing for penetration testers
🐟 PoC of a VBA macro spawning a process with a spoofed parent and command line.
🤔 A REST backend built with plain VBA Microsoft Excel macros. Yes. Macros.
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
Powershell script for enumerating vulnerable DCOM Applications
Enumerate missing KBs and suggest exploits for useful Privilege Escalation vulnerabilities
Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
HTTPLeaks - All possible ways, a website can leak HTTP requests
Find, verify, and analyze leaked credentials
Learn from Casey Smith@subTee
Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised. Portia performs privilege escalation as …
The TrustedSec Attack Platform is a reliable method for droppers on an infrastructure in order to ensure established connections to an organization.
A tool to elevate privilege with Windows Tokens
Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS
Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!
Example DLL to load from Windows NetShell
Data exfiltration using reflective DNS resolution covert channel
Uses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Directory environments using some of the most common offensive …
My musings with PowerShell
A little tool to play with Windows security