Andy | ZephrFish's repositories
GoogD0rker
Note: Going through a full re-write of the tooling so the current versions in the repo do not work!
CVE-2020-16898
HoneyPoC 2.0: Proof-of-Concept (PoC) script to exploit IPv6 (CVE-2020-16898).
NessusPreFlight
Nessus Preflight(NPF) Check for local and remote systems. Essentially sets three registry keys and restarts a service to allow nessus to scan a machine
PS-Scripts
Useful scripts for labs
Random-Yara-Rules
A collection of yara rules I've gathered over the years :-)
cve-2020-1351
Bash Proof-of-Concept (PoC) script to exploit SIGRed (CVE-2020-1350). Achieves Domain Admin on Domain Controllers running Windows Server 2003 up to Windows Server 2019.
msf-autoshell
Feed the tool a .nessus file and it will automatically get you MSF shell
zephrfish.github.io
zsec backup blog
ASREPRoast
Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.
Bloodhound-Custom-Queries
Custom Query list for the Bloodhound GUI based off my cheatsheet
CoverStory
A cover story generator for people who Need Quick Covers On Operations
EyeWitness
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
nmap-summariser
another nmap summarising script
cobalt-arsenal
My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
CobaltStrikeToGhostWriter
Log converter from CS log to Ghostwriter CSV
sysmon-config
Sysmon configuration file template with default high-quality event tracing
openvpn-install
OpenVPN road warrior installer for Ubuntu, Debian, CentOS and Fedora