bhassani's repositories
RDP-Remote-Exploit-POC
RDP remote exploit POC
AESShellCodeInjector
This program will take encrypted shell code and decrypt it in run time and inject it into another process
AssemblySnippets
IAT Hook
CVE-2022-21883
win32k LPE
DNS_Tunneling
DNS Tunneling using powershell to download and execute a payload. Works in CLM.
EtwSessionHijacking
A Poc on blocking Procmon from monitoring network events
FunctionStomping
A new shellcode injection technique. Given as C++ header or standalone Rust program.
KaynLdr
KaynLdr is a Reflective Loader written in C/ASM
Nidhogg
Nidhogg is an all-in-one simple to use rootkit for red teams.
PetyaCPlusPlus
A clone of petya dropper in c++. Credits to Vichingo455 for the c# version where i took the mbr from
pi-defender
Kernel Security driver used to block past, current and future process injection techniques on Windows Operating System.
PolyHook_2_0
C++17, x86/x64 Hooking Libary v2.0
ponyc
:horse: Pony is an open-source, actor-model, capabilities-secure, high performance programming language
pycobalt
Cobalt Strike Python API
RedWarden
Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation
remote_hacker_probe
Threat Emulation and Red Teaming Framework, The Hacking Software for normal people.
RPC-Backdoor
A basic emulation of an "RPC Backdoor"
Talon
A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.
ThePerfectInjector
Literally, the perfect injector.
TripleCross
A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
Unhook-Import-Address-Table
Piece of code to detect and remove hooks in IAT
unicorn
Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.
VirusPetyaA
It's Reworked Version of Legendary Virus Petya.A(MBR Payload is not changed)