bigbrobro's repositories

adalanche

Active Directory ACL Visualizer and Explorer - who's really Domain Admin?

License:GPL-3.0Stargazers:0Issues:0Issues:0

azureOutlookC2

Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for North Korean APT InkySquid / ScarCruft / APT37. TTP: Use Microsoft Graph API for C2 Operations.

Stargazers:0Issues:0Issues:0

BOF.NET

A .NET Runtime for Cobalt Strike's Beacon Object Files

Stargazers:0Issues:0Issues:0

Certipy

Python implementation for Active Directory certificate abuse

License:MITStargazers:0Issues:0Issues:0

CVE-2021-40444

CVE-2021-40444 PoC

Stargazers:0Issues:0Issues:0
Stargazers:0Issues:0Issues:0

CVE-2021-40444-Sample

CVE-2021-40444 Sample

Stargazers:0Issues:0Issues:0

datree

Prevent Kubernetes misconfigurations from reaching production (again 😤 )! Datree is a CLI tool to ensure K8s manifests and Helm charts follow best practices as well as your organization’s policies. See our docs: https://hub.datree.io

License:Apache-2.0Stargazers:0Issues:0Issues:0

DeepSleep

all credits go to @mgeeky

License:MITStargazers:0Issues:0Issues:0

DongTai

DongTai is an interactive application security testing(IAST) product that supports the detection of OWASP WEB TOP 10 vulnerabilities, multi-request related vulnerabilities (including logic vulnerabilities, unauthorized access vulnerabilities, etc.), third-party component vulnerabilities, etc.

License:Apache-2.0Stargazers:0Issues:0Issues:0

eagle

Real time data processing system based on flink and CEP

Stargazers:0Issues:0Issues:0

flink-learning

flink learning blog. http://www.54tianzhisheng.cn/ 含 Flink 入门、概念、原理、实战、性能调优、源码解析等内容。涉及 Flink Connector、Metrics、Library、DataStream API、Table API & SQL 等内容的学习案例,还有 Flink 落地应用的大型项目案例(PVUV、日志存储、百亿数据实时去重、监控告警)分享。欢迎大家支持我的专栏《大数据实时计算引擎 Flink 实战与性能优化》

License:Apache-2.0Stargazers:0Issues:0Issues:0

GetWebDAVStatus

Determine if the WebClient Service (WebDAV) is running on a remote system

Stargazers:0Issues:0Issues:0

HandleKatz

PIC lsass dumper using cloned handles

Stargazers:0Issues:0Issues:0

inceptor

Template-Driven AV/EDR Evasion Framework

License:NOASSERTIONStargazers:0Issues:0Issues:0

injectEtwBypass

CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)

License:GPL-2.0Stargazers:0Issues:0Issues:0

machine_learning_security

Source code about machine learning and security.

Stargazers:0Issues:0Issues:0

neuralcoref

✨Fast Coreference Resolution in spaCy with Neural Networks

License:MITStargazers:0Issues:0Issues:0

NimHollow

Nim implementation of Process Hollowing using syscalls (PoC)

Stargazers:0Issues:0Issues:0

Ninja_UUID_Dropper

Module Stomping, No New Thread, HellsGate syscaller, UUID Dropper for x64 Windows 10!

Stargazers:0Issues:0Issues:0

Penetration-Testing-Tools

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

Stargazers:0Issues:0Issues:0
Stargazers:0Issues:0Issues:0

QueenSono

Golang binary for data exfiltration with ICMP protocol

Stargazers:0Issues:0Issues:0

RedWarden

Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation

License:GPL-3.0Stargazers:0Issues:0Issues:0

ShellcodeFluctuation

An advanced in-memory evasion technique fluctuating shellcode's memory protection between RW/NoAccess & RX and then encrypting/decrypting its contents

Stargazers:0Issues:0Issues:0

SuperMem

A python script developed to process Windows memory images based on triage type.

License:MITStargazers:0Issues:0Issues:0

ThreadStackSpoofer

Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation from scanners and analysts.

Stargazers:0Issues:0Issues:0

Toggle_Token_Privileges_BOF

Syscall BOF to arbitrarily add/detract process token privilege rights.

Stargazers:0Issues:0Issues:0

unhook-bof

Remove API hooks from a Beacon process.

License:BSD-3-ClauseStargazers:0Issues:0Issues:0

Whisker

Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.

Stargazers:0Issues:0Issues:0