Giters
Matt Nelson (enigma0x3)

enigma0x3

Geek Repo

1k

followers

0

following

0

stars

Github PK Tool:Github PK Tool

Matt Nelson's repositories

Generate-Macro

This Powershell script will generate a malicious Microsoft Office document with a specified payload and persistence method.

Language:PowerShellStargazers:673Issues:47Issues:15

Misc-PowerShell-Stuff

random powershell goodness

Language:PowerShellStargazers:435Issues:27Issues:3

Invoke-LoginPrompt

Invokes a Windows Security Login Prompt and outputs the clear text password.

Language:PowerShellStargazers:165Issues:11Issues:1

Invoke-AltDSBackdoor

Language:PowerShellStargazers:118Issues:16Issues:0

Powershell-Payload-Excel-Delivery

Uses Invoke-Shellcode to execute a payload and persist on the system.

Language:PowerShellLicense:MITStargazers:113Issues:18Issues:2

MessageBox

PoC dlls for Task Scheduler COM Hijacking

Language:C++Stargazers:86Issues:7Issues:1

OutlookPersistence

Language:PowerShellStargazers:80Issues:12Issues:0

Powershell-C2

Language:PowerShellStargazers:53Issues:5Issues:0

Old-Powershell-payload-Excel-Delivery

This version touches disk for registry persistence.

Language:Visual BasicStargazers:26Issues:6Issues:0

windows-operating-system-archaeology

windows-operating-system-archaeology @Enigma0x3 @subTee

Language:PowerShellLicense:BSD-3-ClauseStargazers:19Issues:3Issues:0

PenTesting-Scripts

A ton of helpful tools

Language:PythonStargazers:15Issues:2Issues:0

PowershellProfile

Abuses Powershell Profiles

Stargazers:12Issues:3Issues:0

atomic-red-team

Small and highly portable detection tests.

Language:C#License:MITStargazers:11Issues:6Issues:0

PowerShell-Suite

My musings with PowerShell

Language:PowerShellLicense:BSD-3-ClauseStargazers:8Issues:3Issues:0

Empire

Empire is a pure PowerShell post-exploitation agent.

Language:PowerShellLicense:BSD-3-ClauseStargazers:5Issues:2Issues:0

bugs

Stargazers:4Issues:3Issues:0

DeviceGuardBypassMitigationRules

A reference Device Guard code integrity policy consisting of FilePublisher deny rules for published Device Guard configuration bypasses

License:MITStargazers:4Issues:2Issues:0

misc-1

Language:VBScriptStargazers:4Issues:2Issues:0

sandbox-attacksurface-analysis-tools

Set of tools to analyze and attack Windows sandboxes.

Language:C#License:Apache-2.0Stargazers:4Issues:2Issues:0

BCD

BCD is a module to interact with boot configuration data (BCD) either locally or remotely using the ROOT/WMI:Bcd* WMI classes. The functionality of the functions in this module mirror that of bcdedit.exe.

Language:PowerShellLicense:BSD-3-ClauseStargazers:3Issues:3Issues:0

Misc

Language:Visual BasicStargazers:3Issues:4Issues:0

oleviewdotnet

A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container

Language:PythonLicense:GPL-3.0Stargazers:3Issues:2Issues:0

windows-itpro-docs

This is used for contributions to the Windows 10 content for IT professionals on docs.microsoft.com.

Language:PowerShellLicense:NOASSERTIONStargazers:2Issues:3Issues:0

blogstuff

Stargazers:1Issues:2Issues:0

delphi-code-coverage

This is a clone of the code coverage tool for Delphi on http://code.google.com/p/delphi-code-coverage/

Language:PascalStargazers:1Issues:2Issues:0

DotNetInteropDemos

A set of demos and a PowerShell module to interact with DotNetInterop.

Language:PowerShellLicense:GPL-3.0Stargazers:1Issues:3Issues:0

impacket

Impacket is a collection of Python classes for working with network protocols.

Language:PythonLicense:NOASSERTIONStargazers:1Issues:2Issues:0

OPCDE

OPCDE DXB 2017 Materials

Stargazers:1Issues:2Issues:0