CodyJohnston's repositories
DeathSleep
A PoC implementation for an evasion technique to terminate the current thread and restore it before resuming execution, while implementing page protection changes during no execution.
Red-Team-Infrastructure-Automation
Disposable and resilient red team infrastructure with Terraform
AtomicSyscall
Tools and PoCs for Windows syscall investigation.
Chisel-Strike
A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
cobalt-arsenal
My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
CVE-2022-26937
A Zeek package to detect CVE-2022-26937, a vulnerability in the Network Lock Manager (NLM) protocol in Windows MFS server.
KrbRelayUp
KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
Powershell-to-Ducky-Converter
This is an application I am developing to automatically convert powershell scripts into ready to use Ducky scripts
RDPHijack-BOF
Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.
ScamNumberSearch
This project is aimed at extracting the phone numbers of tech support scammers that are specifically abusing legitimate website's SEO to push their scam numbers very high up in the search results.
Spring4Shell-POC
Spring4Shell Proof Of Concept/Information CVE-2022-22965
windows-coerced-authentication-methods
A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.
wkpe
Windows Kernel Programming Experiments