CYRIL PINEIRO's repositories
elevationstation
elevate to SYSTEM any way we can! Metasploit and PSEXEC getsystem alternative
Obligato
This project is an implant framework designed for long term persistent access to Windows machines.
KRBUACBypass
UAC Bypass By Abusing Kerberos Tickets
PhoenixC2
Command & Control-Framework created for collaboration in python3
DarkWidow
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+BlockDll) mitigation policy on spawned process + PPID spoofing + Api resolving from TIB + API hashing
D1rkInject
Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, and reverting back memory protections and original memory state
S4UTomato
Escalate Service Account To LocalSystem via Kerberos
DonPAPI
Dumping DPAPI credz remotely
Alcatraz
x64 binary obfuscator
BlackLotus
BlackLotus UEFI Windows Bootkit
ElusiveMice
Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind
TeamsPhisher
Send phishing messages and attachments to Microsoft Teams users
GregsBestFriend
GregsBestFriend process injection code created from the White Knight Labs Offensive Development course
commando-vm
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com
DavRelayUp
DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the default settings).
log4shell-detector
Detector for Log4Shell exploitation attempts
VMUnprotect.Dumper
VMUnprotect.Dumper can dynamically untamper VMProtected Assembly.
VMUnprotect
VMUnprotect can dynamically log and manipulate calls from virtualized methods by VMProtect.
EasyPen
EasyPen is a GUI program which helps pentesters do target discovery, vulnerability scan and exploitation
Chimera
Automated DLL Sideloading Tool With EDR Evasion Capabilities
Medusa
LD_PRELOAD Rootkit
CompMgmtLauncher_DLL_UACBypass
CompMgmtLauncher & Sharepoint DLL Search Order hijacking UAC/persist via OneDrive
yetAnotherObfuscator
C# obfuscator that bypass windows defender
Freeze
Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
FilelessRemotePE
Loading Fileless Remote PE from URI to memory with argument passing and ETW patching and NTDLL unhooking and No New Thread technique
ad-password-protection
Active Directory password filter featuring breached password checking and custom complexity rules
fuxploider
File upload vulnerability scanner and exploitation tool.
ADCSPwnNG
A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.