br-sn's starred repositories
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
PrivescCheck
Privilege Escalation Enumeration Script for Windows
malicious-pdf
đź’€ Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
AlternativeShellcodeExec
Alternative Shellcode Execution Via Callbacks
bruteforce-lists
Some files for bruteforcing certain things.
leaky-paths
A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.
OffensivePipeline
OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team exercises.
BOF_Collection
Various Cobalt Strike BOFs
EXCELntDonut
Excel 4.0 (XLM) Macro Generator for injecting DLLs and EXEs into memory.
Mapping-Injection
Just another Windows Process Injection
SylantStrike
Simple EDR implementation to demonstrate bypass
REW-sploit
Emulate and Dissect MSF and *other* attacks
CVE-2020-1034
PoC demonstrating the use of cve-2020-1034 for privilege escalation
pe2shc-to-cdb
Convert shellcode generated using pe_2_shellcode to cdb format.
directInjectorPOC
Small POC written in C# that performs shellcode injection on x64 processes using direct syscalls as a way to bypass user-land EDR hooks.
OutlookParasite
Outlook persistence using VSTO add-ins
siem-from-scratch
SIEM-From-Scratch is a drop-in ELK based SIEM component for your Vagrant infosec lab