Choas01's repositories
desktop-web-browsers
Almost full list of all desktop web browsers
cve_2024_0044
CVE-2024-0044: a "run-as any app" high-severity vulnerability affecting Android versions 12 and 13
DojoLoader
Generic PE loader for fast prototyping evasion techniques
ADSpider
Monitor changes in Active Directory with replication metadata
android_autorooter
Exfiltrate sensitive user data from apps on Android 12 and 13 using CVE-2024-0044 vulnerability remotely
Carseat
Python implementation of GhostPack's Seatbelt situational awareness tool
COMThanasia
A set of programs for analyzing common vulnerabilities in COM
CVE-2024-22274
CVE-2024-22274: Authenticated Remote Code Execution in VMware vCenter Server
CVE-2024-24401
Auto exploitation tool for CVE-2024-24401.
CVE-2024-43044-jenkins
Exploit for the vulnerability CVE-2024-43044 in Jenkins
cve-2024-6387-poc
32-bit PoC for CVE-2024-6387 — mirror of the original 7etsuo/cve-2024-6387-poc
edr_blocker
Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination IP addresses are parsed based on the server name in TLS Client Hello packet and the provided blocked server name (or blocked string) list in the file.
no-defender
A slightly more fun way to disable windows defender. (through the WSC api)
pdfdropper
PDF dropper Red Team Scenairos
PPLrevenant
Bypass LSA protection using the BYODLL technique
recaptcha-phish
Phishing with a fake reCAPTCHA
reg_snake
Python tool to interact with WMI StdRegProv
RemoteKrbRelay
Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
RWX_MEMEORY_HUNT_AND_INJECTION_DV
Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.
sccmhound
A BloodHound collector for Microsoft Configuration Manager
sleepmask-vs
A simple Sleepmask BOF example
windows
Windows inside a Docker container.