Pyramid
The main purpose of the tool is to perform offensive tasks by leveraging some Python evasion properties and looking as a legit Python application usage.
RunasCs
Added flag
--bypass-uac
that allows to spawn a process as an Administrator (if password is known) with full privileges
PIVert-Relay
Modified Ceri's PIVert to support authentication where the smart card holding the private key is on another machine
📕 Helping SOC teams while providing a custom cookbook on adversaries
poc.xmla
PoC for Windows SQL Server to authenticate on an arbitrary machine.
WinAPI Search
Malware Behavior Catalog
A catalog of malware objectives and behaviors
NimicStack
Pure Nim implementation of Call Stack Spoofing technique to mimic legitimate programs.
VulnerabilitiesDataImport is a standalone script that adds information about unpatched vulnerabilities to BloodHound based on parsed vulnerability scanners reports.
https://github.com/zeronetworks/BloodHound-Tools/tree/main/VulnerabilitiesDataImport
CoffeeLdr
CoffeeLdr is a BOF loader. This project can be used for testing Beacon Object files without using the Cobalt Strike framework or can be used to give custom implants a way to execute BOFs that where designed for Cobalt strike. Most of the Beacon Api (fork&run and injection) functions are empty for custom implementations.
RDPHijack
Cobalt Strike BOF that uses
WinStationConnect
API to perform local / remote RDP session hijacking.
sccmdecryptpoc.cs
SCCM Account Password Decryption PoC by Adam Chester.
Converting a simple malware dropper written in C to x64 assembly
https://www.accidentalrebel.com/converting-a-malware-dropper-to-x64-assembly.html
Dump Citrix Secure Access auth cookie from the process memory
https://github.com/soufianetahiri/CitrixSecureAccessAuthCookieDump
NetstatWithTimestamps - netstat like with timestamps for connections.
https://github.com/gtworek/PSBits/tree/master/NetstatWithTimestamps
OneDriveExplorer
Command line and GUI based application for reconstructing the folder structure of OneDrive
DFSCoerce
PoC for MS-DFSNM coerce NTLM authentication using NetrDfsRemoveStdRoot method
CVE-2022-23222 PoC
Linux Kernel eBPF Local Privilege Escalation
⚠️ For educational/research purposes only. Use at your own risk.
usbsas
A free and open source (GPLv3) tool and framework for securely reading untrusted USB mass storage devices.
Ica2Tcp
Ica2Tcp is a tool developed in C allowing to proxy any TCP connection inside a Citrix ICA connection.
247365