koolacac Goto Github PK
Type: User
Type: User
Cobalt Strike Malleable C2 Design and Reference Guide
Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Cobalt Strike 3.x.
A proof of concept for dynamically loading .net assemblies at runtime with only a minimal convention pre-knowledge
Metasploit Framework
.NET 5 Single file Application
Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in memory
miscellaneous scripts and programs
Leaked Muddyc3 C2 source.
This is the MuddyWater APT C3 v1.0.1 Source
Obfuscate ECMA CIL (.NET IL) assemblies to evade Windows Defender AMSI
Loads any C# binary in mem, patching AMSI + ETW.
A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP
.NET, PE, & Raw Shellcode Packer/Loader Written in Nim
Nim-based assembly packer and shellcode loader for opsec & profit
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
Extendable payload obfuscation and delivery framework
NTLMv1 Multitool
A toolkit to attack Office365
My experiments in weaponizing Nim (https://nim-lang.org/)
Open Red Team Bag of Tricks - Red Teaming and Pentesting cheat sheet and trick book
A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques implemented by malicious documents.
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.
Scripts, tools, and proof-of-concepts to aid in a penetration test.
For educational purposes only, use at your own responsibility. metasploit_rc_scripts - contains either sample rc files for explatation or perls to generate such. nmap_scans - is for some ready to use nmap scannings. other_scans - scripts that can be used for scanning if nothing else is availible. post - is for post exploatation. shellshock - is a script to get use of the shellshock vulnarability. tools - are other tools. If any questions please ask at [email protected]
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
A tool to make socks connections through HTTP agents
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.