0xXyc

hacking-methodologyNotes

Notes, research, and methodologies for becoming a better hacker. Knowledge should be free.

process-injection

A simple PoC demonstrating process injection techniques on Windows.

Obfuscated-Nim-Reverse-Shell

Obfuscated Nim Reverse Shell. Bypasses Windows Defender, and I mean completely laughs at it.

maldev

Keeping track of my malware development progress on GitHub!

auto-enum3rology

Enumeration automation script best suited for web-based engagements.

Binary-Exploitation

A curated list of heap and stack-based exploitation challenges; consisting of theory and testing.

binex

A set of custom binary exploitation challenges that I created to help me learn binex!!! I hope you enjoy!!!

SSL-Certpinning-Bypass

A script written in JavaScript that utilizes Frida to bypass SSL Certificate Pinning Defenses put in place on mobile applications.

0xXyc

Personal Repo

adPEAS

Powershell tool to automate Active Directory enumeration.

ARM-Reverse-Shell

ARM AARCH64 Reverse Shell.

asm-on-linux

Learning asm!!!

VPS-Lock-Figuration

A crafty lil script that will help deploy most best security practices to date on your VPS.

3d-portfolio

c-http-server

This is a very lightweight and simple HTTP server created for learning C, sockets, and HTTP RFC.

C-webserver

This is a very lightweight and simple HTTP server created for learning C, sockets, and HTTP RFC.

CovenantC2

Covenant is a collaborative .NET C2 framework for red teamers.

cpp-dev

Here, I will be documenting my C++ journey!

cppSockets

The name says it all... C++ sockets. Simple introduction, I try to make it as easy as possible with brief explanations. Followed by following best practices. Coded for beginners, brevity, and comprehension.

CVE-2021-4034

PoC for PwnKit: Local Privilege Escalation Vulnerability in polkit’s pkexec (CVE-2021-4034)

linWinPwn

linWinPwn is a bash script that automates a number of Active Directory Enumeration and Vulnerability checks

mimikatz

A little tool to play with Windows security

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

peri-area.c

A simple program written in C that takes user input and computes the perimeter and area of a rectangle.

port_scanner

Simple Python Port Scanner

simpleTCPSocket

Simple socket in C that makes a quick HTTP GET request to Google.com on port 80. This could easily be swapped out for another remote host as well.

sum-integer.c

A simple C program that accepts user input of two numbers and finds the sum of those two numbers.

Villain

Villain is a Windows & Linux backdoor generator and multi-session handler that allows users to connect with sibling servers (other machines running Villain) and share their backdoor sessions, handy for working as a team.

years.c

A simple program written in C that will compute a user's input of x amount of days into years, weeks, and days.

ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.