0xbad53c's repositories
osed-tools
Tools/scripts I used/developed during the EXP-301 course.
OffSecOps-Arsenal
Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.
VBA-Talk-Dirty-To-Me
Using the Windows SpVoice interface from VBA to speak to the user running your maldoc. Educational phishing just got more impactful! Example macro and .doc in the repo. I came across this while enumerating available COM objects and it was too funny not too share.
wazuh-detection-rules
Our collection of Wazuh detection rules for our Offense Lab
CattleStorm
Python wrapper script to interact with the BeEF (https://github.com/beefproject/beef) API and execute modules on all connected zombie browsers at the same time.
ossec-sysmon-for-linux-decoder
Rudimentary OSSEC/Wazuh decoder for Sysmon For Linux events. Drop it in /var/ossec/ruleset/decoders, restart OSSEC/Wazuh and start writing detection rules like you would do for Windows events!
docker_oneliners
Collection of docker oneliners to save time when compiling/running projects for security research & development.
ansible-role-cobalt-strike
An Ansible role for installing Cobalt Strike.
auditd
Fork with customisation for partial integration into Wazuh for our detection lab.
BokuLoader
A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
confused
Tool to check for dependency confusion vulnerabilities in multiple package management systems
docker-impacket-smbserver
Simple docker file to start an SMB share with impacket smbserver
docker-mingw-w64
Dockerfiles to build containers with mingw-w64
evil-winrm
The ultimate WinRM shell for hacking/pentesting
Jira-Lens
Fast and customizable vulnerability scanner For JIRA written in Python
jira_scan
A simple remote scanner for Atlassian Jira
npk
A mostly-serverless distributed hash cracking platform
osed-scripts
bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)
PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
SourcePoint
SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
ssh-default-banners
Nmap NSE script to identify Debian, Ubuntu, FreeBSD version based on default SSH banner response. Intended for Penentration Testing, OSCP/PWK, HackTheBox (HTB), TryHackMe, RootMe
sysmon-config
Advanced Sysmon configuration, Installer & Auto Updater with high-quality event tracing
sysmon-modular
A repository of sysmon configuration modules
webshell
This is a webshell open source project
WhatWeb
Next generation web scanner