91tim's starred repositories
trufflehog
Find and verify secrets
git-all-secrets
A tool to capture all the git secrets by leveraging multiple open source git searching tools
ExchangeFinder
Find Microsoft Exchange instance for a given domain and identify the exact version
warbird-hook
Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
RPC-Backdoor
A basic emulation of an "RPC Backdoor"
DC30_Workshop
DEFCON 30 Mainframe buffer overlow workshop container
TeamFiltration
TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts
ActiveDirectory_Lab
Active DIrectory Lab for Pentesting Practice
BloatedHammer
API Hammering with C++20
GoBypassAV
整理了基于Go的16种API免杀测试、8种加密测试、反沙盒测试、编译混淆、加壳、资源修改等免杀技术,并搜集汇总了一些资料和工具。
DeathSleep
A PoC implementation for an evasion technique to terminate the current thread and restore it before resuming execution, while implementing page protection changes during no execution.
APISandbox
Pre-Built Vulnerable Multiple API Scenarios Environments Based on Docker-Compose.
cervantes
Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients, vulnerabilities, and reports in a single, centralized location.
iscsicpl_bypassUAC
UAC bypass for x64 Windows 7 - 11
MicroBurst
A collection of scripts for assessing Microsoft Azure security
SharpBlock
A method of bypassing EDR's active projection DLL's by preventing entry point exection
Archive.org-Downloader
Python3 script to download archive.org books in PDF format
BokuLoader
A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!