cvlabsio Goto Github PK

tracy

A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.

training-devenv-security

Hands-on Exercises for "Dangerous attack paths: Modern Development Environment Security - Devices and CI/CD pipelines"

tramphook

x86 Trampoline Hook

transactionmaster

A tool for Windows that can make any program work within file-system transactions.

transitionalperiod

Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits

trawler

PowerShell script to help Incident Responders discover adversary persistence mechanisms.

trevorspray

TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!

trickest-cli

Execute Trickest workflows right from your terminal

triplecross

A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.

trufflesnout-ad-discovery-toolkit

Iterative AD discovery toolkit for offensive operations

trunpe

A modified RunPE (process hollowing) technique avoiding the usage of SetThreadContext by appending a TLS section which calls the original entrypoint.

tsharkvm

tshark + ELK analytics virtual machine

tunna

Tunna is a set of tools which will wrap and tunnel any TCP communication over HTTP. It can be used to bypass network restrictions in fully firewalled environments.

turokloader

A sophisticated ransomware loader similar to Locky, Conti, Emotet and Ryuk

tweeds

An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a Tweets and more while evading most API limitations.

u-boat

Russia Wipers Dropper (educational-purposes )

uacme

Defeating Windows User Account Control

uefi_boot_script_expl

CHIPSEC module that exploits UEFI boot script table vulnerability

uefi_research

A repository with UEFI research stuff

uefitool

UEFI firmware image viewer and editor

ufgraph

ukraine-cyber-operations

Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.

umap

UEFI bootkit for driver manual mapping

umbra

A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malware and more.

unhookingpatch

Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime

unhookme

UnhookMe is an universal Windows API resolver & unhooker addressing problem of invoking unmonitored system calls from within of your Red Teams malware

universal-syscall-64

Resolve syscall numbers at runtime for all Windows versions.

unix_collector

A live forensic collection script for UNIX-like systems.

untitledgoosetool

Untitled Goose Tool is a robust and flexible hunt and incident response tool that adds novel authentication and data gathering methods in order to run a full investigation against a customer’s Azure Active Directory (AzureAD), Azure, and M365 environments.

unwinder

Another approach to thread stack spoofing.