KeyStrOke's repositories
CVE-2023-29357-ExE
Recreation of the SharePoint PoC for CVE-2023-29357 in C# from LuemmelSec
Burp-Suite-tools
List of Burp Suite tools for bug bounty hunting
CVE-2022-33679
One day based on https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.html
CVE-2022-39952
POC for CVE-2022-39952
CVE-2023-34362
MOVEit CVE-2023-34362
Augustus
Evasive Golang Loader
Blackout
kill anti-malware protected processes (BYOVD)
citrixInspector
Accurately fingerprint and detect vulnerable (and patched!) versions of Netscaler / Citrix ADC to CVE-2023-3519
CS-Situational-Awareness-BOF
Situational Awareness commands implemented using Beacon Object Files
CVE-2024-1086
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.
DragonCastle
A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
GIUDA
Ask a TGS on behalf of another user without password
heckitwithstyle.nl
This blog is a personal summary of what I have learned while reading other blog posts.
leaky-paths
A collection of special paths linked to common internal paths, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.
MalwareSamples
This repository contains some malware samples to be delivered on target systems.
mhydeath
Abusing mhyprotect to kill AVs / EDRs / XDRs / Protected Processes.
oletools
oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
Oneliner-Bugbounty
A collection oneliner scripts for bug bounty
OpenSSLSee2
Establish undetected C2 session from a Windows clients to the OpenSSL server
Penetration-Testing-Azure-for-Ethical-Hackers
Penetration Testing Azure for Ethical Hackers, published by Packt
ShellGhost
A memory-based evasion technique which makes shellcode invisible from process start to end.
TeamFiltration
TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts
Weblogic
WebLogic vulnerability exploration from beginner to expert.