k4nfr3's Projects
A tool to kill antimalware protected processes
A list of JARM hashes for different ssl implementations used by some C2/red team tools.
Enumerating and removing kernel callbacks using signed vulnerable drivers
FortiVuln
Identifies the bytes that Microsoft Defender flags on.
LSASS memory dumper using direct system calls and API unhooking.
Project for tracking publicly disclosed DLL Hijacking opportunities.
Lots of script for everything and nothing
.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers
Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories, installed services, the registry and running drivers for the presence of known defensive products such as AV's, EDR's and logging tools.
some tools for driver research
repository containing some nmap scripts
Extract files from NTFS Volume
Determine the Palo Alto PAN-OS software version of a remote GlobalProtect portal or management interface.
Notify if a selected plane has taken off or landed using ADS-B data. Compares older data to newer data to determine if a landing or takeoff has occurred. As well as nav modes, emergency squawk and resolution advisory notifications. Can output to Twitter, Discord, Mastodon, and Telegram
Project to check which Nt/Zw functions your local EDR is hooking
Real Intelligence Threat Analytics - Python addon scripts
Enumerate and disable common sources of telemetry used by AV/EDR.
Python tool to Check running WebClient services on multiple targets based on @leechristensen
A few XDR Scripts