cynicXer's repositories
AceLdr
Cobalt Strike UDRL for memory scanner evasion.
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
adPEAS
Powershell tool to automate Active Directory enumeration.
ai-notes
notes for my AI studies, writing, and product brainstorming
axiom
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
CobaltBus
Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus
Codecepticon
.NET/PowerShell/VBA Offensive Security Obfuscator
Freeze.rs
Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
hashcat-rule
Rule for hashcat or john. Aiming to crack how people generate their password
hoaxshell
A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.
HWSyscalls
HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.
iat_unhook_sample
(First Public?) Sample of unhooking ntdll (All Exports & IAT imports) hooks in Rust using in-memory disassembly, avoiding direct syscalls and all hooked functions (incl. hooked NtProtectVirtualMemory)
IORI_Loader
UUID shellcode Loader with dynamic indirect syscall implementation, syscall number/instruction get resolved dynamicaly at runtime, and the syscall number/instruction get unhooked using Halosgate technique. Function address get resolved from the PEB by offsets and comparaison by hashes
ldapnomnom
Anonymously bruteforce Active Directory usernames from Domain Controllers by abusing LDAP Ping requests (cLDAP)
Nimcrypt2
.NET, PE, & Raw Shellcode Packer/Loader Written in Nim
OSEP-Code-Snippets
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
PackMyPayload
A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
PythonMemoryModule
pure-python implementation of MemoryModule technique to load dll and unmanaged exe entirely from memory
RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
resocks
mTLS-Encrypted Back-Connect SOCKS5 Proxy
Talon
A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.
Vanara
A set of .NET libraries for Windows implementing PInvoke calls to many native Windows APIs with supporting wrappers.
xnLinkFinder
A python tool used to discover endpoints (and potential parameters) for a given target