Mohammad Hassan Pezeshkian's repositories
AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
Augustus
Evasive Golang Loader
azure-policy
Repository for Azure Resource Policy built-in definitions and samples
azure-powershell
Microsoft Azure PowerShell
caldera
Automated Adversary Emulation Platform
Detect_Sandboxie_Environments
Check if application running inside of sandboxie virtual environments.
EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
EventLogSilencer
EventLogSilencer is a PowerShell script designed for disable Windows Event Logging
ExtractBitlockerKeys
A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.
GOAD
game of active directory
Invoke-Obfuscation
PowerShell Obfuscator
Invoke-SessionHunter
Retrieve and display information about active user sessions on remote computers. No admin privileges required.
meow
Cybersecurity research results. Simple C/C++ and Python implementations
MicroBurst
A collection of scripts for assessing Microsoft Azure security
nanodump
The swiss army knife of LSASS dumping
PSBits
Simple (relatively) things allowing you to dig a bit deeper than usual.
RansomTuga
An advanced Ransomware written in C++ and fully customizable
RedTeaming_CheatSheet
Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.
ROADtools
A collection of Azure AD tools for offensive and defensive security purposes
sigma
Main Sigma Rule Repository
StealthIP
This Code Allows You To Encode/Decode files In The IP Format
Stormspotter
Azure Red Team tool for graphing Azure and Azure Active Directory objects
SupportArticles-docs
A public version to sync with SupportArticles-docs-pr
SyscallDumper
Dump system call codes, names, and offsets from Ntdll.dll
UACME
Defeating Windows User Account Control
UltimateAppLockerByPassList
The goal of this repository is to document the most common techniques to bypass AppLocker.
vmware-exploitation
A collection of links related to VMware escape exploits
Zero-Import-Malware
Small project looking into how we can build malware with zero-imports by dynamically resolving windows APIs using GetProcAddress and GetModuleHandle windows APIs.