Stars
openpilot is an operating system for robotics. Currently, it upgrades the driver assistance system on 300+ supported cars.
InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditiona…
Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.
Programmatically create an administrative user under Windows
Another Windows Local Privilege Escalation from Service Account to System
The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket
Information on the Windows Spooler vulnerability - CVE-2021-1675; CVE 2021 34527
.Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py
Extract credentials from lsass remotely
SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GPO) in order to compromise the objects that are controlled by…
A proof of concept on attack vectors against Active Directory by abusing Active Directory Certificate Services (ADCS)
Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands
Adversary Tactics - PowerShell Training
Methods for attacking KeePass 2.X databases, including extracting of encryption key material from memory.
C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
PowerShell toolkit for AD CS auditing based on the PSPKI toolkit.
Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).
12 weeks, 26 lessons, 52 quizzes, classic Machine Learning for all