Chan Jian Hao's repositories
adPEAS
Powershell tool to automate Active Directory enumeration.
awesome-detection-engineering
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
chisel
A fast TCP/UDP tunnel over HTTP
donut
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
Fooocus
Focus on prompting and generating
generative-models
Generative Models by Stability AI
hayabusa
Hayabusa (éš¼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
impacket
Impacket is a collection of Python classes for working with network protocols.
jan
Jan is an open source alternative to ChatGPT that runs 100% offline on your computer
john
John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs
mimikatz
A little tool to play with Windows security
nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
nucleo-ai
An AI assistant beyond the chat box.
open-webui
User-friendly WebUI for LLMs (Formerly Ollama WebUI)
phpggc
PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
prompt-injection-defenses
Every practical and proposed defense against prompt injection.
reverse-shell-generator
Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)
Rubeus
Trying to tame the three-headed dog.
Seatbelt
Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
SharpHound
C# Data Collector for BloodHound
SharpShooter
Payload Generation Framework
trufflehog
Find and verify credentials
unredacter
Never ever ever use pixelation as a redaction technique
VMwareCloak
A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analysis.
WhisperLive
A nearly-live implementation of OpenAI's Whisper.
ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.