Clément Castel's starred repositories
CVE-2024-28995
CVE-2024-28955 Exploitation PoC
GPT-Security-Best-Practices
The purpose of this document is to outline the security risks and vulnerabilities that may arise when implementing ChatGPT in web applications and to provide best practices for mitigating these risks.
EDR-XDR-AV-Killer
Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver
Voidgate
A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfvenom) by performing on-the-fly decryption of individual encrypted assembly instructions, thus rendering memory scanners useless for that specific memory page.
ModSecurity-Webserver-Protection-Guide
A full Mod_Security guide to use local software like clam-av, chkrootkit, fail2ban, rkhunter for Nginx & Apache
TotalRecall
This tool extracts and displays data from the Recall feature in Windows 11, providing an easy way to access information about your PC's activity snapshots.
pdFExploits
this repo contains all types of pdf exploits..
Awesome-BEC
Repository of attack and defensive information for Business Email Compromise investigations
windows-vs-linux-loader-architecture
Side-by-side comparison of the Windows and Linux (GNU) Loaders
incident-response-plan-template
A concise, directive, specific, flexible, and free incident response plan template
awesome-annual-security-reports
A curated list of annual cyber security reports
awesome-incident-response
A curated list of tools for incident response
BloodHound
Six Degrees of Domain Admin
AI-Security-and-Privacy-Events
A curated list of academic events on AI Security & Privacy
ADTimeline
Timeline of Active Directory changes with replication metadata
rapid-endpoint-investigations
Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE
ciso-assistant-community
CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec and Audit Management and supporting +53 frameworks worldwide: NIST CSF, ISO 27001, SOC2, CIS, PCI DSS, NIS2, CMMC, PSPF, GDPR, HIPAA, Essential Eight, NYDFS-500, DORA, NIST AI RMF, 800-53, 800-171, CyFun, CJIS, AirCyber, NCSC, ECC, SCF and so much more
obsidian-dataview
A data index and query language over Markdown files, for https://obsidian.md/.
CVE-2024-1086
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.
file-format-commons
Sample files of various types
LookingGlass
An extremely low latency KVMFR (KVM FrameRelay) implementation for guests with VGA PCI Passthrough.
bfg-repo-cleaner
Removes large or troublesome blobs like git-filter-branch does, but faster. And written in Scala
noseyparker
Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.
sec-cvescan
Analyzes an Ubuntu system and checks for unpatched vulnerabilities.