Dvir S.'s repositories
usbgadget-tool
Dumb USB HID gadget creator for Android (for triggering device driver install on Windows for LPE)
EVA2
Another version of EVA using anti-debugging techs && using Syscalls
configmatter-windows
Configuration Extractor for the Windows variant of BlackMatter Ransomware
inceptor
Template-Driven AV/EDR Evasion Framework
CredPhish
CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.
smartbrute
Password spraying and bruteforcing tool for Active Directory Domain Services
CVE-2021-36934
C# PoC for CVE-2021-36934/HiveNightmare/SeriousSAM
Offensive-Security-OSCP-Cheatsheets
OSCP Cheatsheets, Pentesting Cheathseets, Red Team Attacking Tools and Techniques, Offensive Security Tips
HiveNightmare
Exploit allowing you to read registry hives as non-admin
CVE-2021-33909
Sequoia exploit (7/20/21)
Beaconator
A beacon generator using Cobalt Strike and PEzor.
SharpImpersonation
A User Impersonation tool - via Token or Shellcode injection
PEzor
Open-Source PE Packer
TokenTactics
Azure JWT Token Manipulation Toolset
ItWasAllADream
A PrintNightmare (CVE-2021-34527) Python Scanner. Scan entire subnets for hosts vulnerable to the PrintNightmare RCE
filesec_crawler
Crawl and export extension, description, recommendation and urls from filesec.io
HebHTR
Hebrew Handwritten OCR
DFIR_Resources_REvil_Kaseya
Resources for DFIR Professionals Responding to the REvil Ransomware Kaseya Supply Chain Attack
CVE-2021-1675-LPE
Local Privilege Escalation Edition for CVE-2021-1675
CVE-2021-1675
Impacket implementation of CVE-2021-1675
AKB2Teams
Queries the AttackerKB.com API and posts a daily summary of vulnerabilities to your Microsoft Teams channel
BadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
Cobalt-Wipe
Cobalt wipe is the non-commercial version of Cobalt-Strike 4.3 (May 2021 Release)