naksyn

Diego Capriotti naksyn

250 followers · 49 following

Achievements

rpc2efs Public
Forked from Hypnoze57/rpc2efs

Unauthenticated start EFS service on remote Windows host (make PetitPotam great again)

Python 1 Updated Oct 23, 2025
Havoc-C2-Modification-YARA-Free Public
Forked from JimKw1kX/Havoc-C2-Modification-YARA-Free

POC of modifying YARA signautre for Havoc C2

C 1 MIT License Updated Mar 26, 2025
SC_DEMO Public
Forked from rbmm/SC_DEMO

C Updated Feb 16, 2025
Pyramid Public

a tool to help operate in EDRs' blind spots

python hacking redteaming edr redteam-tools edr-testing

Python 770 93 Apache License 2.0 Updated Dec 2, 2024
DojoLoader Public

Generic PE loader for fast prototyping evasion techniques

evasion pe-loader cobalt-strike red-teaming red-team-tools edr-evasion sleep-obfuscation

C 242 52 Apache License 2.0 Updated Jul 2, 2024
PythonMemoryModule Public

pure-python implementation of MemoryModule technique to load dll and unmanaged exe entirely from memory

python hacking evasion memory-module memorymodule redteaming redteam

Python 333 51 Apache License 2.0 Updated Jun 22, 2024
Packer_Development Public
Forked from rtecCyberSec/Packer_Development

Slides & Code snippets for a workshop held @ x33fcon 2024

C 1 1 BSD 3-Clause "New" or "Revised" License Updated Jun 15, 2024
PMD Public
Forked from chesteroni/PMD

C++ 1 Updated Jun 14, 2024
Embedder Public

Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies

pyramid embedding redteaming edr-evasion

C++ 122 14 Apache License 2.0 Updated May 29, 2024
krbdump Public

A way to extract tickets in case I need to purge and restore tickets on the fly.

C 4 Updated Apr 23, 2024
krblist Public

Old post-ex for listing kerberos tickets. A terribly written clone of `klist`

C 5 Updated Apr 23, 2024
grimreaper Public
Forked from RistBS/grimreaper

A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls

C 1 Updated Mar 20, 2024
ProcessStomping Public

A variation of ProcessOverwriting to execute shellcode on an executable's section

PowerShell 147 28 Apache License 2.0 Updated Dec 16, 2023
ModuleShifting Public

Stealthier variation of Module Stomping and Module Overloading injection techniques that reduces memory IoCs. Implemented in Python ctypes

python injection hacking ctypes redteam-tools edr-testing

Python 125 12 Apache License 2.0 Updated Sep 27, 2023
GregsBestFriend Public
Forked from WKL-Sec/GregsBestFriend

GregsBestFriend process injection code created from the White Knight Labs Offensive Development course

C++ 1 MIT License Updated Jun 23, 2023
DropSpawn_BOF Public
Forked from Octoberfest7/DropSpawn_BOF

CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking

C 2 Updated Jun 7, 2023
talks Public

Repo containing my public talks

23 1 Updated May 30, 2023
BouncyGate Public
Forked from eversinc33/BouncyGate

HellsGate in Nim, but making sure that all syscalls go through NTDLL.DLL (as in RecycledGate).

Nim 2 Updated Feb 12, 2023
UnhookingPatch Public
Forked from pdolinic/UnhookingPatch

Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime

C++ 4 Updated Jan 6, 2023
GOAD Public
Forked from Orange-Cyberdefense/GOAD

game of active directory

PowerShell GNU General Public License v3.0 Updated Oct 7, 2022
Havoc Public
Forked from HavocFramework/Havoc

The Havoc Framework

Go GNU General Public License v3.0 Updated Oct 1, 2022
FilelessRemotePE Public
Forked from ASkyeye/FilelessRemotePE

Loading Fileless Remote PE from URI to memory with argument passing and ETW patching and NTDLL unhooking and No New Thread technique

C++ 1 Updated Sep 29, 2022
DInjector Public
Forked from rvrsh3ll/DInjector

Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL

C# 1 BSD 2-Clause "Simplified" License Updated Aug 27, 2022
TitanLdr Public
Forked from moonlight-junky/TitanLdr

Public variation of Titan Loader

C 1 1 Updated Jun 18, 2022
FOLIAGE Public
Forked from moonlight-junky/FOLIAGE

Public variation of FOLIAGE ( original developer )

C 1 Updated Jun 18, 2022
beacon Public
Forked from moonlight-junky/beacon

Former attempt at creating a independent Cobalt Strike Beacon

Python 1 Updated Jun 18, 2022
RWX-Dlls-for-manual-mapping Public
Forked from boom-cr3/RWX-Dlls-for-manual-mapping

Here are a few rwx dlls your can use to manual map your cheat dll, they will prob get checked soon...

1 Updated May 8, 2022
OffensivePipeline Public
Forked from snovvcrash/OffensivePipeline

OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.

C# 1 GNU General Public License v3.0 Updated Mar 2, 2022
python-bof-runner Public

Python inline shellcode injector that could be used to run BOFs by leveraging BOF2shellcode

python injection shellcode cobalt-strike bof

Python 7 2 MIT License Updated Feb 20, 2022
DarkLoadLibrary Public
Forked from moloch--/DarkLoadLibrary

LoadLibrary for offensive operations

C 1 Updated Dec 14, 2021

Diego Capriotti naksyn

Achievements

Achievements

rpc2efs Public

Uh oh!

Havoc-C2-Modification-YARA-Free Public

Uh oh!

SC_DEMO Public

Uh oh!

Pyramid Public

Uh oh!

DojoLoader Public

Uh oh!

PythonMemoryModule Public

Uh oh!

Packer_Development Public

Uh oh!

PMD Public

Uh oh!

Embedder Public

Uh oh!

krbdump Public

Uh oh!

krblist Public

Uh oh!

grimreaper Public

Uh oh!

ProcessStomping Public

Uh oh!

ModuleShifting Public

Uh oh!

GregsBestFriend Public

Uh oh!

DropSpawn_BOF Public

Uh oh!

talks Public

Uh oh!

BouncyGate Public

Uh oh!

UnhookingPatch Public

Uh oh!

GOAD Public

Uh oh!

Havoc Public

Uh oh!

FilelessRemotePE Public

Uh oh!

DInjector Public

Uh oh!

TitanLdr Public

Uh oh!

FOLIAGE Public

Uh oh!

beacon Public

Uh oh!

RWX-Dlls-for-manual-mapping Public

Uh oh!

OffensivePipeline Public

Uh oh!

python-bof-runner Public

Uh oh!

DarkLoadLibrary Public

Uh oh!