Nguyen Son's repositories
Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
Bug_Bounty_writeups
BUG BOUNTY WRITEUPS - OWASP TOP 10 π΄π΄π΄π΄β
CS-Situational-Awareness-BOF
Situational Awareness commands implemented using Beacon Object Files
Digital-Forensics-Guide
Digital Forensics Guide
Linux-Kernel-Debugging
Linux Kernel Debugging, published by Packt
OffensiveRust
Rust Weaponization for Red Team Engagements.
reveng_rtkit
Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypass infamous rkhunter antirootkit.
SilentCryptoMiner
A Silent (Hidden) Free Crypto Miner Builder - Supports ETH, ETC, XMR and many more.
Auto-Elevate
Escalate from a low-integrity Administrator account to NT AUTHORITY\SYSTEM without an LPE exploit by combining a COM UAC bypass and Token Impersonation
Awesome-RedTeam-Cheatsheet
Active Directory & Red-Team Cheat-Sheet in constant expansion.
bof_helper
Beacon Object File (BOF) Creation Helper
DeepTraffic
Deep Learning models for network traffic classification
faraday
Collaborative Penetration Test and Vulnerability Management Platform
Injector
Complete Arsenal of Memory injection and other techniques for red-teaming in Windows
linux
Linux kernel source tree
MAL-CL
MAL-CL (Malicious Command-Line)
malicious-pdf
π Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
nfstream
NFStream: a Flexible Network Data Analysis Framework.
NimGetSyscallStub
Get fresh Syscalls from a fresh ntdll.dll copy
OFFSEC-PowerShell
My Favorite Offensive Security Scripts
open-vm-tools
Official repository of VMware open-vm-tools project
password-list-brute
Password lists for brute force testing
PoshC2
A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
Red-Team-Advent-of-Code
Red Teaming / Pentesting challenges for my Advent-Of-Code 2021.
RefleXXion
RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, it first collects the syscall numbers of the NtOpenFile, NtCreateSection, NtOpenSection and NtMapViewOfSection found in the LdrpThunkSignature array.
VMware-CVE-2022-22954
POC for VMWARE CVE-2022-22954
wordlists
Infosec Wordlists