H*s*m's starred repositories
EVTX-ATTACK-SAMPLES
Windows Events Attack Samples
UltimateAppLockerByPassList
The goal of this repository is to document the most common techniques to bypass AppLocker.
SysWhispers
AV/EDR evasion via direct system calls.
LTESniffer
An Open-source LTE Downlink/Uplink Eavesdropper
DotNetToJScript
A tool to create a JScript file which loads a .NET v2 assembly from memory.
CS-Situational-Awareness-BOF
Situational Awareness commands implemented using Beacon Object Files
SharpGPOAbuse
SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GPO) in order to compromise the objects that are controlled by that GPO.
Cobalt-Strike-CheatSheet
Some notes and examples for cobalt strike's functionality
capsulecorp-pentest
Vagrant VirtualBox environment for conducting an internal network penetration test
LAPSToolkit
Tool to audit and attack LAPS environments
PowerShell-AD-Recon
PowerShell Scripts I find useful
DripLoader
Evasive shellcode loader for bypassing event-based injection detection (PoC)
cobalt_strike_extension_kit
Attempting to be an all in one repo for others' userful aggressor scripts as well as things we've found useful during Red Team Operations.
SharpSphere
.NET Project for Attacking vCenter
EXCELntDonut
Excel 4.0 (XLM) Macro Generator for injecting DLLs and EXEs into memory.
SharpAllTheThings
The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.
SysmonSearch
Investigate suspicious activity by visualizing Sysmon's event log
SharpBypassUAC
C# tool for UAC bypasses
module_overloading
A more stealthy variant of "DLL hollowing"
FuzzFactory
Domain-Specific Fuzzing with Waypoints
SharpCloud
Simple C# for checking for the existence of credential files related to AWS, Microsoft Azure, and Google Compute.
kirlangic-ttf-fuzzer
TrueType Font Fuzzer
jekyll-theme-hydure
A concise two-column blog theme for Jekyll.
exchange-test-environment
A Vagrantfile and Ansible playbook that can be used to setup test environment with an Exchange server host